Poster - CVE CyberSecurity Database News (Page 248)

Feb 10, 2025 API

CVE-2025-21693 - Detailed Analysis & Exploitation of Linux Kernel zswap Hotplug UAF Vulnerability

In early 2025, a significant vulnerability was discovered and patched in the Linux kernel’s memory subsystem, specifically involving the zswap feature during CPU hotunplug

Feb 10, 2025 XSS

CVE-2024-11831 - Critical XSS Vulnerability in serialize-javascript NPM Library

--- A serious security flaw has been uncovered in the popular serialize-javascript npm package. Tracked as CVE-2024-11831, this vulnerability has wide-reaching consequences for web applications

Feb 10, 2025 Exploit

CVE-2024-12243 - How a Certificate Parsing Flaw in GnuTLS Can Bring Down Your Server (with Exploit Example)

--- Introduction On February 26, 2024, a vulnerability labeled CVE-2024-12243 was publicly disclosed, shedding light on a common-yet-often-overlooked risk in many servers: inefficient processing of

Feb 10, 2025

CVE-2024-12133 - Denial of Service via Slow Certificate Parsing in libtasn1

CVE-2024-12133 is a recently discovered security vulnerability affecting the libtasn1 library, which is widely used for parsing ASN.1 encoded data—including X.509 digital

Feb 10, 2025 Exploit

CVE-2025-21691 - How a Linux Kernel 'cachestat' Permission Bug Threatened Privacy and How it Was Fixed

A new vulnerability labeled CVE-2025-21691 affected the Linux kernel by allowing unauthorized processes to query sensitive page cache statistics they shouldn't see. It