CVE CyberSecurity Database News (Page 180)

Feb 27, 2025 XSS API OAuth

CVE-2024-2321 - Bypassing API Access Security in WSO2 Using Just a Refresh Token

--- WSO2 is a popular platform used by businesses and developers to manage APIs, identity, and access. If you’re running WSO2 API Manager, Identity

Feb 27, 2025

CVE-2025-21776 - Critical Linux Kernel USB Hub Vulnerability Explained

The Linux kernel is the beating heart of countless devices—including many you use daily. Despite its robustness, security bugs can slip through, and sometimes,

Feb 27, 2025 Exploit

CVE-2025-21765 - Linux Kernel ipv6 RCU Protection Bypass Exploit Detailed

In early 2024, security professionals noticed a subtle but significant vulnerability in the Linux kernel's IPv6 networking stack. Officially cataloged as CVE-2025-21765, this

Feb 27, 2025

CVE-2025-21764 - Understanding the Recent Linux Kernel Use-After-Free Vulnerability in ndisc_alloc_skb() — Details, Code, and Exploit Analysis

--- Linux kernel vulnerabilities are always critical because they can affect a wide array of systems — from personal laptops to massive servers. The recently patched

CVE-2025-21756 - Critical Use-After-Free in Linux Kernel vsock — Deep Dive and Workable Exploit Example

Feb 27, 2025

CVE-2025-21756 - Critical Use-After-Free in Linux Kernel vsock — Deep Dive and Workable Exploit Example

In early 2025, security researchers and kernel maintainers resolved a subtle but deadly use-after-free vulnerability in the Linux kernel’s vsock (virtual socket) implementation. This