AI-Powered Whitebox Testing in Action
Learn how AI.powered white-box testing leverages the internal design of the software under test to bugs and vulnerabilities that are off-limits to traditional testing methods.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Code Intelligence
Code Intelligence to Host DevSecOps Talk on The Future of Productive Development; Self-Learning AI for a Secure Tomorrow
This Virtual Talk Takes Place on June 6, Hosted by Code Intelligence CEO and Co-founder Sergej Dechand.
5 Tips for Functional Testing in Java
Functional testing is a critical aspect of application development, and it plays an essential role in products being built within the Java ecosystem to ensure they meet their functional requirements and work as intended for the end user. As this method of testing is heavily based on validating “functionality” (i.e., “Does this application work the way we intend it to work?”), it is essential to utilize it throughout the development process.
CI Fuzz - Monthly Coffee Hour
Join us for a weekly chat about all things fuzzing, live demos, Q&A's, and more.
Code Intelligence Finds Vulnerability in MySQL JDBC Driver - CVE-2023-21971
Affected applications are at a higher risk of severe availability issues.
New Vulnerability in MySQL JDBC Driver: RCE and Unauthorized DB Access
We have found a new vulnerability in MySQL Connector/J (CVE-2023-21971). Oracle issued a critical path update that fixed the issue on April 18, 2023. The vulnerability was found as part of our collaboration with Google’s OSS-Fuzz.
CI DevSecOps Series - Level Up Your Tests
Building secure and reliable APIs is an essential and challenging endeavor. Traditional API testing approaches perform blackbox testing and test the application through the network. This is both slow and lacks deep insights into how the tested application handles API requests. Also, it happens late in the software development lifecycle as it requires a complete application deployment.
Code Intelligence Uncovers Another Expression Denial of Service Vulnerability in Spring - CVE-2023-20863
Affected applications are at a higher risk of severe availability issues.
Another Expression DoS Vulnerability Found in Spring - CVE-2023-20863
Just recently, our open-source fuzzing engine Jazzer found an Expression DoS vulnerability in Spring (CVE-2023-20861). Now, three weeks later, Jazzer found another similar Expression DoS in the Spring framework, labeled CVE-2023-20863. This new finding has an even higher CVSS score of 7.5 (high), compared to the previous finding which came in at 5.3 (medium).
CI Fuzz - Monthly Coffee Hour
Join us for a weekly chat about all things fuzzing, live demos, Q&A's, and more.