Poster - CVE CyberSecurity Database News (Page 552)

CVE-2024-45656 - Static Credentials Threaten IBM Flexible Service Processor (FSP) Firmware — Details, Exploit, and Mitigation

Oct 29, 2024 Exploit

CVE-2024-45656 - Static Credentials Threaten IBM Flexible Service Processor (FSP) Firmware — Details, Exploit, and Mitigation

In June 2024, the cybersecurity community spotted a worrying flaw in several IBM Flexible Service Processor (FSP) firmware versions (FW860.00 through FW860.B3, FW950.

CVE-2024-44274 - How Hackers Could Access Sensitive Info on Locked iPhones and iPads

Oct 28, 2024 iOS Exploit

CVE-2024-44274 - How Hackers Could Access Sensitive Info on Locked iPhones and iPads

Apple devices are known for their security, but every now and then, a bug creeps in. One of the latest is CVE-2024-44274, a vulnerability that

Oct 28, 2024

CVE-2024-49761 - ReDoS Vulnerability in REXML Gem <3.3.9 – How a Simple XML Can Break Your Ruby App

If you use Ruby, especially with XML data, this post is important for you. Recently, a critical vulnerability—CVE-2024-49761—was discovered in the popular XML

Oct 28, 2024

CVE-2024-45802 - How a Squid Proxy Bug Exposed Users to Denial of Service Attacks

Squid is a popular open-source caching proxy. It helps people and companies speed up web browsing, control internet access, and save bandwidth. Many businesses, schools,

CVE-2024-8013 - Inside the MongoDB Encrypted Fields Disclosure Bug

Oct 28, 2024

CVE-2024-8013 - Inside the MongoDB Encrypted Fields Disclosure Bug

If you’re using MongoDB’s Client-Side Field Level Encryption (CSFLE), you count on it to keep sensitive information hidden—even from your database server.