Loading...
Security Resources

Software Updates

Database Security Knowledgebase Update 5.59

Trustwave Database Security Knowledgebase version 5.59 includes new checks for Couchbase and updated checks for SAP ASE and Teradata.

New Vulnerability and Configuration Check Highlights

Oracle

  • API REST endpoints do not require authentication (CVE-2020-9039)
  • Risk: High

MySQL

  • Couchbase is vulnerable to Cross Site Request Forgery due to browser cached credentials (CVE-2020-9042)
  • Risk: High

Updated Checks

SAP ASE

  • Latest patch not applied
    • Risk: High
  • Patch not applied on time
    • Risk: High

Teradata

  • Latest patch not applied
    • Risk: High

Availability

  • Available to all AppDetectivePRO and DbProtect customers with maintenance (subscription or perpetual) in good standing at no additional cost.
  • Download SHATTER Knowledgebase from the Trustwave Support Portal. (https: //www.trustwave.com/Company/Support/and select AppDetectivePRO or DbProtect)
  • AppDetectivePRO customers can use the Updater within the product as well