1. Google OSV Database Pushes Erroneous 'ECHO' Vulnerabilities, Flooding Downstream Systems
A critical data integrity flaw has exposed downstream software supply chain systems to a flood of erroneous vulnerability records. The issue stems from the Google Open Source Vulnerabilities (OSV) database, which ingested and subsequently propagated thousands of incorrect vulnerability entries related to the 'ECHO' ide...