CVE CyberSecurity Database News (Page 50)

May 12, 2025 Mac Safari iOS

CVE-2025-31257 - Critical Safari Crash Bug Explained, Code Samples, Exploitation, and Fixes

CVE-2025-31257 is a recently disclosed security vulnerability affecting Apple's web browser, Safari, on multiple Apple platforms—iPhone, iPad, Mac, Apple TV, Apple Watch,

May 12, 2025 Windows Exploit

CVE-2025-22247 - Breaking Down VMware Tools’ Insecure File Handling Flaw (Exclusive Deep Dive & Exploit Details)

Earlier in 2025, a serious vulnerability labeled CVE-2025-22247 hit the security news cycle. It impacts the widely used VMware Tools, a staple for managing and

May 9, 2025

CVE-2025-4432 - How a Flaw in Rust’s ‘ring’ Exposes QUIC to Denial of Service (with Example Code and Exploit Details)

--- Rust is known for its safety and reliability, especially in critical low-level libraries like ring. Unfortunately, even the best tools can have flaws. Recently,

May 9, 2025 Java Apache

CVE-2025-46392 - Uncontrolled Resource Consumption in Apache Commons Configuration 1.x

A newly published vulnerability, CVE-2025-46392, affects the popular Apache Commons Configuration 1.x library. This vulnerability exposes systems to risks of Denial of Service (DoS)

May 8, 2025 Microsoft Exploit JSON Web Token

CVE-2025-29813 - Azure DevOps Identity Claim Spoofing – Exploiting Authentication Bypass by Assumed-Immutable Data

A major security flaw, CVE-2025-29813, has been discovered in Microsoft Azure DevOps, involving a vulnerability titled “Authentication Bypass by Assumed-Immutable Data.” In simple terms, this