CVE CyberSecurity Database News (Page 139)

Mar 17, 2025 API Exploit

CVE-2025-29781 - Bare Metal Operator Secret Leakage in Kubernetes – Exploit Details & Mitigation

CVE-2025-29781 is a critical vulnerability in the Bare Metal Operator (BMO) that can let any Kubernetes user with access to a namespace extract any Secret

Mar 17, 2025

CVE-2024-40635 - How a UID Overflow in containerd Let Containers Run as Root

Published: June 2024 By: Security Insights Editorial Containerd, a core piece of many container stacks (including Docker and Kubernetes), was recently at the center of

Mar 17, 2025 API

CVE-2025-0495 - Secrets Leakage in Docker Buildx Cache Configuration

In early 2025, a significant vulnerability was discovered in Buildx, a popular Docker CLI plugin that enhances Docker’s build process using BuildKit. Identified as

Mar 17, 2025 API

CVE-2025-2388 - Critical Authentication Bypass in Keytop 路内停车收费系统 2.7.1 Exposed

--- Introduction A serious security vulnerability—CVE-2025-2388—has been uncovered in the Keytop 路内停车收费系统 (Keytop On-street Parking Charging System) version 2.7.1. This flaw

Mar 17, 2025 Windows Microsoft Exploit

CVE-2025-26125 - How an Exposed IOCTL in IObit Malware Fighter v12.1.’s IMFForceDelete Driver Allows Hackers to Delete Any File and Escalate Privileges

A serious security flaw known as CVE-2025-26125 has been found in the IMFForceDelete driver of IObit Malware Fighter v12.1.. This bug exposes a privileged