Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-31650PUBLISHED: 2022-05-25In SoX 14.4.2, there is a floating-point exception in lsx_aiffstartwrite in aiff.c in libsox.a.
CVE-2022-31651PUBLISHED: 2022-05-25In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a.
CVE-2022-29256PUBLISHED: 2022-05-25
sharp is an application for Node.js image processing. Prior to version 0.30.5, there is a possible vulnerability in logic that is run only at `npm install` time when installing versions of `sharp` prior to the latest v0.30.5. If an attacker has the ability to set the value of the `PKG_CONFIG_PATH` e...
CVE-2022-26067PUBLISHED: 2022-05-25
An information disclosure vulnerability exists in the OAS Engine SecureTransferFiles functionality of Open Automation Software OAS Platform V16.00.0112. A specially-crafted series of network requests can lead to arbitrary file read. An attacker can send a sequence of requests to trigger this vulnera...
CVE-2022-26077PUBLISHED: 2022-05-25
A cleartext transmission of sensitive information vulnerability exists in the OAS Engine configuration communications functionality of Open Automation Software OAS Platform V16.00.0112. A targeted network sniffing attack can lead to a disclosure of sensitive information. An attacker can sniff networ...
User Rank: Apprentice
12/24/2020 | 1:44:19 PM
Inasmuch as there are frauds that occur within supply chains, such as theft and asset mismanagement, supply chain fraud has more to do with the falsification of transactional data and the representative "stuff" as it enters and passes through the two primary supply chain cycles: order-to-cash and procure-to-pay.
Transactions generated by traditional supply chain systems - Enterprise Resource Planning (ERP), Electronic Data Interchange (EDI), and Automatic Identification (e.g. barcode labeling & scanning) - that are used to grade supply chain performance can also be used to ascertain supply chain risk and to detect and therefore reduce fraud, both at the source and in the aggregate.