CVE-2024-46668 - Unrestricted Resource Allocation in FortiOS—How Attackers Can Take Down Your Network with Large File Uploads
In June 2024, researchers discovered and disclosed CVE-2024-46668, a critical vulnerability in Fortinet’s FortiOS. This flaw affects a wide range of versions and allows
CVE-2024-47100 - CSRF in Siemens SIMATIC S7-120/SIPLUS S7-120 PLCs — Changing CPU Mode with One Click
CVE-2024-47100 is a recently disclosed vulnerability affecting a wide range of Siemens SIMATIC S7-120 and SIPLUS S7-120 PLCs. The bug exists in their web interface,
CVE-2024-11736 - How Keycloak’s URL Placeholders Expose Sensitive Server Data
CVE-2024-11736 is a recently discovered security vulnerability in Keycloak, a popular open-source identity and access management solution. This issue could let admin users access sensitive
CVE-2024-11734 - Keycloak Denial of Service via Malicious Security Header Injection
In early 2024, a significant vulnerability (CVE-2024-11734) was discovered in Keycloak, an open-source identity and access management solution widely used by organizations for single sign-on
CVE-2024-12365 - How a WordPress Caching Plugin Exposed Sensitive Data and Internal Networks
---
Overview
In early 2024, a security vulnerability was disclosed for the popular W3 Total Cache plugin (often abbreviated as W3TC) for WordPress: CVE-2024-12365. This
Episode
00:00:00
00:00:00