CVE CyberSecurity Database News (Page 338)

Jan 21, 2025 Exploit

CVE-2025-21656 - How a Linux Kernel Drivetemp Bug Gave Garbage Data When Drives Glitched

--- Summary: A subtle bug once hid in the Linux kernel’s drivetemp hardware monitoring driver (hwmon). If your storage drive glitched or disconnected, instead

Jan 21, 2025

CVE-2024-57938 - Integer Overflow Bug in Linux Kernel SCTP Autoclose – Explained

In June 2024, a new vulnerability (CVE-2024-57938) was disclosed in the Linux Kernel’s SCTP (Stream Control Transmission Protocol) subsystem. This flaw is subtle but

Jan 21, 2025

CVE-2024-57931 - How a Simple Mistake in SELinux Could Crash Your Linux Kernel

On June 11, 2024, the Linux community quietly fixed a serious problem in the Security-Enhanced Linux (SELinux) subsystem. The issue, now tracked as CVE-2024-57931, made

Jan 21, 2025 API Exploit SQL Java

CVE-2024-43709 - Exploiting Resource Allocation Limits in Elasticsearch with SQL Functions

--- Elasticsearch is one of the most used search and analytics engines in the world, powering everything from simple enterprise search to massive public web

Jan 21, 2025 Exploit SOAP Java Apache

CVE-2025-23184 - Denial of Service Vulnerability in Apache CXF – Code Snippet, Exploit Scenario, and Remediation

On February 2025, a security advisory (CVE-2025-23184) was published detailing a denial of service (DoS) vulnerability in Apache CXF versions before 3.5.10, 3.