CVE-2025-4517 - Arbitrary Filesystem Write via Python `tarfile` Extraction with `filter="data"`
A new vulnerability, CVE-2025-4517, has been discovered in Python’s popular tarfile module. This issue allows attackers to write arbitrary files anywhere on your filesystem
CVE-2024-12718 - How Python’s tarfile Extraction Filters Can Mess with Your Files
What is CVE-2024-12718?
CVE-2024-12718 is a newly reported vulnerability in the Python tarfile module. In simple words, it’s a security hole in how Python
CVE-2025-21479 - Memory Corruption via Unauthorized GPU Micronode Command Execution — Details and Exploit Walkthrough
Published: June 2024
Severity: Critical
CVE ID: CVE-2025-21479
Vulnerable Component: GPU Driver Micronode Command Handler
Reported By: GPUsec Team
Overview
In April 2024, security researchers
CVE-2025-5419 - Out of Bounds Read/Write in V8 — Inside Google Chrome's Latest Heap Corruption Vulnerability
A new vulnerability, CVE-2025-5419, has been identified and fixed in Google Chrome (prior to version 137..7151.68). This bug affects the V8 JavaScript engine
CVE-2025-20298 - How Weak Directory Permissions in Splunk Universal Forwarder for Windows Expose Your Data
CVE-2025-20298 is a security vulnerability discovered in Splunk Universal Forwarder for Windows. Versions *below* 9.4.2, 9.3.4, 9.2.6, and 9.
Episode
00:00:00
00:00:00