CVE CyberSecurity Database News (Page 435)

Dec 24, 2024 Exploit SQL Oracle

CVE-2019-2483 - Critical Oracle iStore Shopping Cart Vulnerability—How It Works, the Exploit Path, and How to Stay Safe

Oracle iStore is a popular product in the Oracle E-Business Suite, powering the online shopping experience for businesses worldwide. CVE-2019-2483 is a high-severity security flaw

Dec 24, 2024

CVE-2022-21505 - Defeating Linux Kernel Lockdown with IMA Appraise Log and Kexec (Explained)

When it comes to protecting your Linux system, you might think kernel lockdown and Integrity Measurement Architecture (IMA) are enough. But with CVE-2022-21505, attackers can

Dec 24, 2024 Exploit SQL

CVE-2024-12745 - Exploiting SQL Injection in Amazon Redshift Python Connector v2.1.4

Author: SecureFuse Labs Introduction In February 2024, a serious SQL injection vulnerability, CVE-2024-12745, was discovered in the Amazon Redshift Python Connector, specifically in version 2.

Dec 24, 2024 Windows API Exploit SQL

CVE-2024-12746 - SQL Injection Attack in Amazon Redshift ODBC Driver v2.1.5. – Full Exploit Details & Guidance

In February 2024, a critical SQL injection vulnerability (CVE-2024-12746) was discovered in the Amazon Redshift ODBC Driver, specifically version 2.1.5. for both Windows

Dec 24, 2024 Exploit

CVE-2024-53162 - Critical Linux Kernel Vulnerability in QAT Driver (`uof_get_name()`)—PoC, Analysis, and Fix

Recently, a major security vulnerability was discovered and patched in the Linux kernel’s QuickAssist Technology (QAT) driver. Identified as CVE-2024-53162, this flaw could lead