CVE-2025-25204 - How a Simple Exit Code Bug in `gh attestation verify` Could Threaten Your Artifact Security
In early 2025, security researchers discovered a critical yet subtle vulnerability in GitHub’s official command line tool, gh, affecting versions 2.49. through 2.
CVE-2024-57790 - Hardcoded Root Credentials in IXON B.V. IXrouter IX240 v3. Exposes Critical Industrial Systems
Date: June 2024
Vulnerability ID: CVE-2024-57790
Product Affected: IXON B.V. IXrouter IX240 (Industrial Edge Gateway) v3.
Components: Physical device, non-volatile flash memory
Attack Vector:
CVE-2024-56463 - IBM QRadar SIEM 7.5 Vulnerable to Cross-Site Scripting (XSS) — Exploit Breakdown and Real-World Demo
CVE-2024-56463 is a newly published security vulnerability affecting IBM QRadar SIEM version 7.5. At its core, this is a cross-site scripting (XSS) flaw in
CVE-2025-26506 - Remote Code Execution & Elevation of Privilege in HP LaserJet Printers Explained
A new vulnerability, CVE-2025-26506, has been uncovered affecting several HP printing devices. This security flaw reveals that certain HP LaserJet Pro, LaserJet Enterprise, and LaserJet
CVE-2025-25740 - Stack-Based Buffer Overflow in D-Link DIR-853 A1 (FW1.20B07) via PSK Parameter
A new critical vulnerability, CVE-2025-25740, has been found in the D-Link DIR-853 A1 router with firmware version 1.20B07. This bug can let attackers take
Episode
00:00:00
00:00:00