Poster - CVE CyberSecurity Database News (Page 255)

Feb 5, 2025 Java

CVE-2025-0167 - How a Rare `.netrc` Configuration Can Leak Your Credentials in Curl Redirects

When you use cURL, it's natural to expect your credentials to stay private—especially if you took the trouble to set up a

Feb 5, 2025 Windows Exploit

CVE-2025-0725 - Exploiting Buffer Overflow in libcurl’s Gzip Decompression with zlib ≤ 1.2..3

On March 6, 2025, a new critical vulnerability named CVE-2025-0725 was discovered affecting libcurl when it’s used with zlib 1.2..3 or older.

Feb 5, 2025

CVE-2025-0665 - libcurl's Double Close on eventfd—How a Subtle Bug Can Haunt Your Server

Libcurl is a staple in the open source networking world—powering everything from command-line file downloads to complex data pipelines. But sometimes, even the sharpest

Feb 5, 2025 API Exploit

CVE-2024-1539 - How a GitLab API Info Leak Let Banned Group Members See Issue Updates

--- Intro: What is CVE-2024-1539? CVE-2024-1539 is a newly discovered vulnerability in GitLab's Enterprise Edition (EE) that impacts a wide range of versions:

Feb 5, 2025

CVE-2023-52924 - Underlying Dangers in Linux Netfilter's Verdict Map Handling—Issues, Exploit Details, and Technical Insights

In late 2023, a subtle but critical vulnerability was discovered in the Linux kernel’s Netfilter nf_tables subsystem. This flaw, now identified as CVE-2023-52924,