Poster - CVE CyberSecurity Database News (Page 508)

CVE-2024-31141 - Files and Directories Exposed in Apache Kafka Clients (Improper Privilege Management Vulnerability)

Nov 19, 2024 API Exploit Java Apache Jira

CVE-2024-31141 - Files and Directories Exposed in Apache Kafka Clients (Improper Privilege Management Vulnerability)

--- Published: May 2024 Severity: High Affects: Apache Kafka Clients 2.3. through 3.5.2, 3.6.2, 3.7. Component: Kafka Clients, Kafka

Nov 19, 2024 Exploit

CVE-2024-21539 - How @eslint/plugin-kit’s RegExp Flaw Can Be Exploited for DoS Attacks

CVE-2024-21539 is a vulnerability found in the @eslint/plugin-kit NPM package, versions before .2.3. Simply put, a flaw in the way this library sanitized

Nov 19, 2024

CVE-2024-50299 - Fixing the SCTP Chunk Size Validation Bug in the Linux Kernel

Recently, a serious issue was patched in the Linux kernel that could allow attackers to crash systems using the SCTP protocol. This bug, now tracked

Nov 19, 2024 Exploit

CVE-2024-50264 - Linux Kernel vsock/virtio Use-After-Free Vulnerability Explained

A serious security bug has been found and patched in the Linux kernel. This flaw, tracked as CVE-2024-50264, affects the vsock virtual socket implementation using

Nov 18, 2024 Exploit Oracle

CVE-2024-21287 - A Critical Oracle Agile PLM Framework Vulnerability Explained

Oracle’s Agile Product Lifecycle Management (PLM) Framework is used globally as a backbone for critical supply chain processes. However, the recent CVE-2024-21287 vulnerability, discovered