Apache HertzBeat
How does this open source repository relate to critical infrastructure and healthcare?
Hertzbeat is a monitoring and alerting system that would have access to mission critical systems. Its focus is on monitoring large scale cloud resources across a wide range of protocols.
What would vulnerabilities in this repository mean for critical infra & healthcare?
Hertzbeat has had a wide range of vulnerabilities, including RCE, SSRF, exposure of sensitive information, SQL injection and others. Given its access to critical systems, unfixed vulnerabilities would be catastrophic.