SailPoint Buys Orkus and OverWatchID to Strengthen Cloud Access Governance

SailPoint Buys Orkus and OverWatchID to Strengthen Cloud Access Governance
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database CVE-2019-17660PUBLISHED: 2019-10-16

A cross-site scripting (XSS) vulnerability in admin/translate/translateheader_view.php in LimeSurvey 3.19.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the tolang parameter, as demonstrated by the index.php/admin/translate/sa/index/surveyid/336819/lang/ PATH_INFO.

CVE-2019-11281PUBLISHED: 2019-10-16

Pivotal RabbitMQ, versions prior to v3.7.18, and RabbitMQ for PCF, versions 1.15.x prior to 1.15.13, versions 1.16.x prior to 1.16.6, and versions 1.17.x prior to 1.17.3, contain two components, the virtual host limits page, and the federation management UI, which do not properly sanitize user input...

sailpoint orkus overwatchid strengthen cloud access governance