CVE-2025-3224 - Privilege Escalation in Docker Desktop for Windows Update Process
Recent research has uncovered a privilege escalation vulnerability in Docker Desktop for Windows (CVE-2025-3224). If exploited, a local, low-privileged attacker could gain SYSTEM permissions by
CVE-2025-31651 - Exploiting Rewrite Rule Bypass in Apache Tomcat — Details, Demo, and Defense
Apache Tomcat is one of the world’s most popular Java web servers. This spring, security researchers found a serious flaw — CVE-2025-31651 — that affects how
CVE-2025-31650 - Memory Leak and Denial of Service in Apache Tomcat via Broken HTTP Priority Headers
A newly disclosed vulnerability with the identifier CVE-2025-31650 has been discovered in Apache Tomcat, one of the most widely used Java web servers in the
CVE-2024-12706 - Exploiting SQL Injection in OpenText™ Digital Asset Management (Up to 24.4)
Published: June 2024
Severity: Critical
Quick Summary
A major security hole — CVE-2024-12706 — has been found in all versions of OpenText™ Digital Asset Management (DAM) up
CVE-2025-46661 - Exploiting Unauthenticated Remote Code Execution in IPW Systems Metazo (Analyze & Demo)
In early 2025, security researchers spotted a serious flaw (now CVE-2025-46661) in IPW Systems’ Metazo software, affecting all versions through 8.1.3. This vulnerability
Episode
00:00:00
00:00:00