Planned Vembu Full Disclosure
20 Aug 2021 - Frank Breedijk
If you are using Vembu BDR version 3.7.0, 3.9.1 Update 1, 4.2.0 or 18.104.22.168 and have your instances exposed to public internet, you are strongly advices to upgrade to Vembu BDR v22.214.171.124.
On the 25th of August we plan to release the full details of the following CVEs:
All of these vulnerabilities are unauthenticated remote code execution vulnerabilities.