Poster - CVE CyberSecurity Database News (Page 375)

Jan 6, 2025 API Exploit

CVE-2025-21611 - tgstation-server API Authorization Bypass Explained with Code Example

The world of open-source server management tools often faces unexpected bugs leading to security flaws. One recent example is CVE-2025-21611, which affects *tgstation-server*, a popular

Jan 6, 2025 Windows iOS Exploit

CVE-2024-8474 - OpenVPN Connect Logs Your Private Key in Plaintext—Here’s What You Need to Know

A serious security issue has been discovered in OpenVPN Connect, the popular official VPN client for OpenVPN servers. Identified as CVE-2024-8474, this vulnerability affects versions

Jan 6, 2025 Exploit

CVE-2024-5594 - OpenVPN PUSH_REPLY Injection Vulnerability—Explained & Exploited

(June 2024) — Security researchers have discovered a major vulnerability (CVE-2024-5594) in OpenVPN. If you use OpenVPN before version 2.6.11, you’re at risk

Jan 6, 2025

CVE-2024-21464 - Memory Corruption Vulnerability in IPA Statistics Processing When No Active Clients Registered

Recently, a critical vulnerability, CVE-2024-21464, was discovered in certain cellular devices and network infrastructure, specifically affecting components that implement the *IP Acceleration (IPA)* framework. This

Jan 6, 2025 WiFi

CVE-2024-20148 - How a WiFi Bug Lets Attackers Run Code Remotely — With Code Example & Exploit Details

In June 2024, a critical vulnerability identified as CVE-2024-20148 hit headlines in WiFi firmware. This long-form post breaks down the bug, how it’s exploited,