Security of Java, NodeJS, Ruby and PHP all threatened by remote-code execution flaw

clock
Security of Java, NodeJS, Ruby and PHP all threatened by remote-code execution flaw

Easily exploited flaw identified in OpenAPI framework used by Microsoft, PayPal and others

An as-yet unpatched remote code execution flaw in the OpenAPI framework, also known as the Swagger APIs, could easily be exploited unless a patch is rushed out. The disclosure was made this week...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

More on Threats and Risks

Researcher Patrick Wardle first warned Zoom about the bug in December last year

Zoom fixes dangerous flaw on Mac - for the third time

Security researcher finds that the squeaky wheel gets the grease

Tom Allen
clock 15 August 2022 • 1 min read
The average business ransom paid is now above $800,000

Majority of firms lack cyber insurance

Cost, lack of transparency and increasing software requirements are big challenges when it comes to finding an insurer

clock 12 August 2022 • 3 min read
Patch Tuesday: Two zero-days and 17 critical flaws fixed in Microsoft's August update

Patch Tuesday: Two zero-days and 17 critical flaws fixed in Microsoft's August update

A hefty 121 vulnerabilities have been patched this month

John Leonard
clock 10 August 2022 • 3 min read