Poster - CVE CyberSecurity Database News (Page 112)

Apr 3, 2025 API Exploit

CVE-2025-31489 - MinIO Authorization Bypass with Invalid Signatures

MinIO is a popular, high-performance object storage system released under the GNU Affero General Public License v3.. Organizations and developers rely on it as a

Apr 3, 2025 Exploit

CVE-2025-31486 - Vite Dev Server File Exposure Vulnerability Explained (with Exploit Code)

CVE-2025-31486 is a critical security issue that affects Vite, a popular frontend tooling framework for JavaScript. This vulnerability allows attackers to read arbitrary files from

Apr 3, 2025

CVE-2025-31115 - Critical Use-After-Free Bug in XZ Utils liblzma Multithreaded Decoder – What You Need to Know

XZ Utils is a widely used package for compressing and decompressing files, familiar to anyone who’s handled .xz files in the Linux or Unix

Apr 3, 2025 RCE Exploit

CVE-2025-22457 - Remote Code Execution in Ivanti Connect Secure, Policy Secure, and ZTA Gateways Due To Stack-Based Buffer Overflow

The vulnerability CVE-2025-22457 has sent shockwaves through the cybersecurity community. It’s a stack-based buffer overflow flaw in popular Ivanti products—Connect Secure (formerly Pulse

Apr 3, 2025 Windows Exploit

CVE-2024-4877 - Privilege Escalation in OpenVPN for Windows via Named Pipe Hijack (Explained & Exploited)

--- OpenVPN is one of the most popular VPN solutions for individuals and enterprises seeking secure, private connections. But in May 2024, a critical vulnerability—