CVE-2024-56521 - Dangerous SSL Verification Defaults in TCPDF (<6.8.) - How Your PDFs May Be at Risk
If you generate PDFs in PHP, you may have run into a popular library called TCPDF. It’s used all over the world to create
CVE-2024-56431 - Exploiting the Invalid Negative Left Shift Vulnerability in libtheora’s `oc_huff_tree_unpack`
On June 20, 2024, a critical vulnerability was disclosed in libtheora, the reference implementation for Theora video compression. Tracked as CVE-2024-56431, this flaw arises from
CVE-2024-52535 - Privilege Escalation Attack via Symlink Vulnerability in Dell SupportAssist
Dell SupportAssist is a widely used tool for system diagnostics, driver updates, and support on Dell PCs. However, a recent vulnerability, CVE-2024-52535, exposes a serious
CVE-2023-5117 - Unauthorized File Access in GitLab CE/EE through Confidential Issue Uploads
Published: June 2024
Summary
If you’re using GitLab Community Edition (CE) or Enterprise Edition (EE) before version 17.6., you could be affected by
CVE-2024-52046 - Apache MINA Unsafe Java Deserialization Vulnerability (RCE Exploit Details, Code, and Fixes)
In June 2024, Apache published a critical security advisory for Apache MINA, identifying a serious flaw in its object deserialization process. This bug is registered
Episode
00:00:00
00:00:00