Search

1. Apache ActiveMQ critical vulnerability

03-11-23

The message broker vulnerable if strict firewall rules do not already allow a connection to originate exclusively from trusted systems or if client…

2. Apache HTTP Server CVE-2021-44228

22-02-22

CERT-Bund has published a short info on vulnerabilities in the Apache HTTP Server

3. Critical Vulnerability in the Linux Library "xz"

04-04-24

On 30 March 2024, the CERT AT (Computer Emergency Response Team, Austria) reported a critical vulnerability (CVE-2024-3094,…

4. Data Protection

26-09-24

Data Privacy Policy 1. An overview of data protection General information The following information will provide you with an easy to navigate…

5. Disclaimers and Legal Information

26-09-24

Legal Disclosure Responsible in the sense of § 18 Abs. 2 MStV (German legal framework for electronic media) KISTERS AG Pascalstraße 8+10 52076…

6. H2-Console CVE-2021-42392

14-01-22

Vulnerability in the H2 database console found

7. Java Spring Framework CVE-2022-22965

04-04-22

A zero-day vulnerability was found in the popular Java Web application development framework Spring

8. KiScript IDE sunset, not KiScript

12-10-23

KiScript IDE is user interface to execute KiScript commands on the WISKI Server. It was used by a few organizations to run customized scripts for…

9. Knowledge Base

06-11-24

KISTERS Jira ServiceDesk Safety advisory If you were given login credentials prior to 22 May 2022 your old password may be too short for…

10. Log4j artifacts.

22-09-22

We’ve been informed by a customer that one of the delivered Jar files in the KiDSM distribution contains the file “JMSAppender.class”, which was…

11. OpenSSL CVE-2022-2274

14-07-22

Based on the description CVE-2022-2274 and CVE-2022-2097 “Source: CVE: CVE-2022-2274 -…

12. PHP CVE-2022-31625

28-06-22

The KISTERS solutions are not actively using the method "pg_query_params()" or the "mysqlnd/pdo" modules, and our PHP-Applications are primarily…