Skip to main content

Blog Archive

Topic
Audience

Showing 1 - 24 of 213 posts

Open Source Security

Best practices for continuous vulnerability management

October 29, 2024

Application Security

Want to avoid a data breach? Employ secrets detection

September 16, 2024

Engineering

Exploiting HTTP/2 CONTINUATION frames for DoS attacks

April 8, 2024

Application Security

The XZ backdoor CVE-2024-3094

March 31, 2024

Container Security

Leaky Vessels deep dive: Escaping from Docker one syscall at a time

February 6, 2024

Vulnerability Insights

Leaky Vessels: Docker and runc container breakout vulnerabilities (January 2024)

January 31, 2024

Container Security

Vulnerability: runc process.cwd and leaked fds container breakout (CVE-2024-21626)

January 31, 2024

Container Security

Buildkit mount cache race: Build-time race condition container breakout (CVE-2024-23651)

January 31, 2024

Container Security

Buildkit build-time container teardown arbitrary delete (CVE-2024-23652)

January 31, 2024

Container Security

Buildkit GRPC SecurityMode privilege check: Build-time container breakout (CVE-2024-23653)

January 31, 2024

Application Security

Vulnerability vs Weakness: Understanding Key Differences in AppSec

November 17, 2023

Vulnerability Insights

Weak Hash vulnerability discovered in crypto-js and crypto-es (CVE-2023-46233 & CVE-2023-46133)

October 25, 2023

Vulnerability Insights

Find and fix HTTP/2 rapid reset zero-day vulnerability CVE-2023-44487

October 11, 2023

Code Security

How to update cURL

October 11, 2023

Vulnerability Insights

How to find and fix Critical WebP zero-day vulnerability CVE-2023-4863

October 5, 2023

Vulnerability Insights

High severity vulnerability found in libcurl and curl (CVE-2023-38545)

October 4, 2023

Supply Chain Security

Critical WebP 0-day security CVE-2023-4863 impacts wider software ecosystem

September 28, 2023

optimizing prioritization

Application Security

Introducing Snyk’s new Risk Score for risk-based prioritization

August 17, 2023

Application Security

Research with Snyk and Redhunt Labs: Scanning the top 1000 orgs on GitHub

June 22, 2023

Application Security

A quick primer on LDAP injection

June 1, 2023

Container Security

Improved risk assessment with EPSS scores in Snyk

May 22, 2023

Code Security

Snyk top 10 code vulnerabilities report

May 18, 2023

Application Security

How to prevent XPath injection attacks

May 10, 2023

Application Security

Snyk brings developer-first AppSec approach to C/C++

April 4, 2023

Subscribe to our newsletter

Get all latest content from Snyk directly to your mailbox.