Search

1. H2-Console CVE-2021-42392

14-01-22

Vulnerability in the H2 database console found

2. XML libexpat CVE-2022-23852

08-02-22

Critical security vulnerability in the "Expat library" for processing XML messages

3. Apache HTTP Server CVE-2021-44228

22-02-22

CERT-Bund has published a short info on vulnerabilities in the Apache HTTP Server

4. Java Spring Framework CVE-2022-22965

04-04-22

A zero-day vulnerability was found in the popular Java Web application development framework Spring

5. PHP CVE-2022-31625

28-06-22

The KISTERS solutions are not actively using the method "pg_query_params()" or the "mysqlnd/pdo" modules, and our PHP-Applications are primarily…

6. OpenSSL CVE-2022-2274

14-07-22

Based on the description CVE-2022-2274 and CVE-2022-2097 “Source: CVE: CVE-2022-2274 -…

7. Log4j artifacts.

22-09-22

We’ve been informed by a customer that one of the delivered Jar files in the KiDSM distribution contains the file “JMSAppender.class”, which was…

8. Vulnerability in the Apache Commons Text library

27-10-22

On October 17, 2022, the German Federal Office for Information Security (BSI) informed about a vulnerability in the program library "Apache Commons…

9. Security vulnerabilities in Citrix Workspace

21-02-23

In order to access the KISTERScloud services, many of you use the client application Citrix Workspace. The software provider has notified their…

10. KiScript IDE sunset, not KiScript

12-10-23

KiScript IDE is user interface to execute KiScript commands on the WISKI Server. It was used by a few organizations to run customized scripts for…

11. WISKI HTTP/TLS Certificate: Expiration and Renewal

16-10-23

HTTPS (or secure HTTP communication) is achieved via encryption protocol and digital security certificates, which have a limited lifespan.…

12. Apache ActiveMQ critical vulnerability

03-11-23

The message broker vulnerable if strict firewall rules do not already allow a connection to originate exclusively from trusted systems or if client…