至顶头条 on MSN

Apache Tika关键漏洞影响比预想更严重且涉及组件更广

广泛使用的 Apache TikaXML 文档提取工具被发现存在安全漏洞,其影响范围和严重程度都超出最初评估,项目维护者发出了新的安全警告。 新发布的安全警报涉及两个相互关联的漏洞,第一个是去年8月公开的CVE-2025-54988,严重程度评级为8 ...
Software Engineering Institute

SEI Parser Demystifies Firmware to Fight Vulnerabilities

Software based on the Unified Extensible Firmware Interface (UEFI) standard makes up the firmware of most modern desktop computers and servers. This software is largely invisible to users, critical to ...
Bleeping Computer

Critical Golang XML parser bugs can cause SAML authentication bypass

This week, Mattermost, in coordination with Golang has disclosed 3 critical vulnerabilities within Go language's XML parser. If exploited, these vulnerabilities, also impacting multiple Go-based SAML ...
InfoWorld

Ruby completes switch to Prism parser

Ruby 3.4.1 is listed as the current stable version and can be downloaded from ruby-lang.org. Features cited for the Ruby update include switching the default parser from parse.y to Prism. This serves ...
Business Wire

DefectDojo Permanently Solves Security Data Ingestion Issues with First-of-its-Kind ...

AUSTIN, Texas--(BUSINESS WIRE)--DefectDojo, the pioneer in scalable unified vulnerability management and DevSecOps, today announced the launch of its universal parser for security data ingestion on ...