While there are no workarounds to address the REST API vulnerability, Cisco did release free software updates that are available to customers who have purchased a license. The vulnerability affects ...

Cisco this week said it issued a software update to address a vulnerability in its Cisco REST API virtual service container for Cisco IOS XE software that scored a critical 10 out of 10 on the ...

Cisco is warning that the vManage software that ships with its SD-WAN has an authentication vulnerability in its REST API. The critical-rated vulnerability, CVE-2023-20214, has a CVSS score of 9.1 ...

A common API vulnerability is with the use of illegitimate tokens to gain access to endpoints. Authentication systems themselves may be compromised, or expose an API key accidentally.

The new vulnerability (CVE-2022-0218, CVSS score 8.3) was found by Wordfence researcher Chloe Chamberland, and was caused by a faulty configuration in the REST-API routes used to update the ...

A recent survey from Postman found that while most companies use REST, GraphQL and others like webhooks, WebSockets, GraphQL, and SOAP are gaining traction. "Authorization flaws in APIs are very ...

WordPress introduced REST API endpoints by default to the CMS when it pushed version 4.7 in early December 2016 to allow access to WordPress posts, comments, terms, and other settings ...

A Twitter API vulnerability shipped in June 2021 (and later patched) has come back to haunt the organization. In December, one hacker claimed to have the personal data of 400 million users for ...

Cisco's Product Security Incident Response Team pushes a new approach that makes security advisories easier to consume and act upon.