CVE-2023-39180 - Unleashing a Denial-of-Service Attack on Linux ksmbd via SMB2_READ Memory Leak
---
The Linux kernel is at the core of many servers and workstations around the world. With the adoption of network file sharing through SMB
CVE-2024-38828 - How @RequestBody byte[] in Spring MVC Can Enable a DoS Attack
In June 2024, a vulnerability tracked as CVE-2024-38828 was discovered in Spring Framework, one of Java’s most widely-used libraries for building web applications. This
CVE-2023-43091 - Code Injection Risk in GNOME Maps via Malicious service.json
Earlier this year, security researchers discovered a serious vulnerability in GNOME Maps, a desktop application popular with many Linux users. Labeled as CVE-2023-43091, this flaw
CVE-2024-0793 - Exploiting HPA Spec Flaw in kube-controller-manager Leads to DoS—Understanding, Demo, and Mitigation
---
Summary
A new Kubernetes vulnerability, CVE-2024-0793, has drawn concern in the cloud native community. This bug affects the kube-controller-manager (KCM) due to improper handling
CVE-2023-4639 - How a Cookie Parsing Bug in Undertow Could Let Attackers Steal HttpOnly Cookies
In the world of web security, small parsing bugs can open the door to major vulnerabilities. This is exactly what happened with CVE-2023-4639. The Undertow
Episode
00:00:00
00:00:00