IT Security Notifications
Below you will find a short list of current safety notices. Registered customers will find the complete security notices in the protected area of the KISTERS Service Portal. By clicking on one of the notifications below, you will be forwarded to the full text version of the notification in the service portal and may be asked to enter your access data.
Vulnerability in Docker (KISTERS not affected)
2024-08-09 | Water
On July 24, 2024, the Federal Office for Information Security (BSI) reported a vulnerability in Docker…
Read moreCritical Vulnerability in the Linux Library “xz”
2024-04-04 | Water
On March 30, 2024, the CERT AT reported a critical vulnerability in the Linux XZ program library…
Read moreCritical Vulnerability in PostgreSQL JDBC Driver
2024-02-23 | Water
On 2024-02-19, the NIST informed about a critical vulnerability in the PostgreSQL JDBC Driver…
Read moreCritical Vulnerability in Apache ActiveMQ
2023-11-03 | Water
On Nov. 02, the BSI informed about a critical vulnerability in the message broker ActiveMQ…
Read moreSecurity vulnerabilities in Citrix NetScaler
2023-10-13 | Water
On 10 October, the software manufacturer Citrix issued a security bulletin for the NetScaler ADC and…
Read moreSecurity vulnerabilities in Citrix Workspace
2023-02-21 | Water
In order to access the KISTERScloud services, many of you use the client application Citrix…
Read moreVulnerability in the Apache Commons Text library
2022-10-20 | Water
On October 17, 2022, the German Federal Office for Information Security (BSI) informed about a…
Read moreLog4j artifacts
2022-09-23 | Water
We’ve been informed by a customer that one of the delivered Jar files in the KiDSM distribution…
Read moreOpenSSL CVE-2022-2274
2022-07-14 | Water
Based on the description CVE-2022-2274 and CVE-2022-2097 “Source: CVE: CVE-2022-2274 – CVE-Search”…
Read morePHP CVE-2022-31625
2022-06-28 | Water
The KISTERS solutions are not actively using the method “pg_query_params()” or the “mysqlnd/pdo”…
Read moreJava Spring Framework CVE-2022-22965
2022-04-04 | Water
A zero-day vulnerability was found in the popular Java Web application development framework Spring…
Read more