CVE-2025-32444 - Remote Code Execution in vLLM Mooncake Integration via Unsafe Pickle Serialization
A new security vulnerability, CVE-2025-32444, impacts certain versions of vLLM – a popular high-throughput and memory-efficient inference and serving engine for large language models (LLMs). This
CVE-2025-3501 - How a Misconfigured Policy in Keycloak Skips Trust Store Verification (Full Analysis & Exploit Demo)
Keycloak is a widely used open-source identity and access management solution. It helps secure apps by handling login, SSO, role-based access controls, and more. In
CVE-2025-4083 - How a Thunderbird JavaScript: URI Bug Broke Process Isolation
In early 2025, security researchers found a critical vulnerability (CVE-2025-4083) in Mozilla Thunderbird and Firefox. The flaw allowed malicious JavaScript to run in the wrong
CVE-2025-4091 - Memory Safety Bugs in Firefox and Thunderbird – What You Need to Know
If you’ve updated your Firefox or Thunderbird software recently, you might have noticed a bunch of security fixes. One bug in particular – CVE-2025-4091 – deserves
CVE-2025-4035 - Libsoup Cookie Vulnerability Explained—with Exploit Example
A newly-disclosed security flaw, CVE-2025-4035, impacts the popular HTTP library libsoup. The bug lets attackers bypass cookie protection for public suffix domains (think: .com, .org)
Episode
00:00:00
00:00:00