CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...
Installation

AJA to acquire video encoding specialist Comprimato

Planned deal will bring Comprimato's live transcoding, standards conversion and ST 2110 encoding software under AJA Video ...

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...