Skip to content

AppSec Observer: CVE

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Cybersecurity Insights with Contrast CISO David Lindner | 5/24/24

    Cybersecurity Insights with Contrast CISO David Lindner | 5/24/24

    Insight #1 Tool consolidation continues, with Palo Alto’s plans to absorb IBM's QRadar software. This movement will..

    Cybersecurity Insights with Contrast CISO David Lindner | 5/17/24

    Cybersecurity Insights with Contrast CISO David Lindner | 5/17/24

    Insight #1 Would you rather a. keep finding more vulnerabilities and building that security backlog until it leads your..

    Cybersecurity Insights with Contrast CISO David Lindner | 5/10/24

    Cybersecurity Insights with Contrast CISO David Lindner | 5/10/24

    Insight #1 The Cybersecurity and Infrastructure Security Agency’s (CISA’s) Known Exploited Vulnerabilities (KEV) list..

    Cybersecurity Insights with Contrast CISO David Lindner | 5/3/24

    Cybersecurity Insights with Contrast CISO David Lindner | 5/3/24

    Insight #1 Here we go again: Verizon’s new Data Breach Investigations Report (DBIR) is out, and once again,..

    CISA asks software devs to stamp out ‘unforgivable’ SQL injection vulnerabilities

    CISA asks software devs to stamp out ‘unforgivable’ SQL injection vulnerabilities

    On Wednesday, March 27, CISA and the FBI issued a cry for help: We need to stamp out SQL injection vulnerabilities, and..

    Critical zero-day Confluence RCE vulnerability blocked by Contrast Runtime Security

    Critical zero-day Confluence RCE vulnerability blocked by Contrast Runtime Security

    If your organization is running an older version of Atlassian Confluence Server that’s affected by CVE-2023-22527 — the..

    Contrast discovers MLflow framework zero-day that threatens to poison machine language models

    Contrast discovers MLflow framework zero-day that threatens to poison machine language models

    Most Machine Language (ML) tools — including the development frameworks used for managing ML life cycles — are..

    Learn about the hidden dangers of traditional AppSec tools and why Runtime Security is replacing them: podcast writeup

    Learn about the hidden dangers of traditional AppSec tools and why Runtime Security is replacing them: podcast writeup

    Are traditional AppSec tools keeping up with advances in software? That was the question The Application Security..