CVE-2024-36795 - Insecure Permissions in Netgear WNR614 and JNR101V2/N300 Routers – Exploit Details and Analysis
---
Netgear routers are used worldwide for home and small office networks, promising security and reliability. But just like many other embedded devices, sometimes firmware
CVE-2024-5480 - Remote Code Execution Vulnerability in PyTorch's Distributed RPC Framework
A critical vulnerability (CVE-2024-5480) has been discovered in the PyTorch's torch.distributed.rpc framework, specifically in versions prior to 2.2.2. This
CVE-2024-33655 - The “DNSBomb” Vulnerability Explained — How Malicious DNS Queries Can Overwhelm Servers
CVE-2024-33655, known as the “DNSBomb” vulnerability, is a newly identified flaw in DNS protocol handling. This bug exploits core behaviors of DNS as defined in
CVE-2024-36779 - SQL Injection in Sourcecodester Stock Management System v1. (editCategories.php)
A critical SQL Injection vulnerability—CVE-2024-36779—has been identified in the popular open-source project, Sourcecodester Stock Management System v1.. The flaw sits in the editCategories.
CVE-2024-28995 - How a Directory Traversal Flaw in SolarWinds Serv-U Exposed Sensitive Files
SolarWinds Serv-U, a widely-used secure file transfer application, recently faced a critical security threat—CVE-2024-28995. This vulnerability allows attackers to read arbitrary files on the
Episode
00:00:00
00:00:00