CVE CyberSecurity Database News (Page 70)

May 15, 2025 Exploit

CVE-2025-47287 - Denial-of-Service via Log Flood in Tornado's `multipart/form-data` Parser

A new high-impact vulnerability has been uncovered in Tornado, the popular Python web framework and async networking library. Tracked as CVE-2025-47287, this flaw allows a

CVE-2025-4664 - How a Chrome Loader Bug Let Attackers Leak Cross-Origin Data (Exploit & Analysis)

May 14, 2025 Exploit Google Chrome

CVE-2025-4664 - How a Chrome Loader Bug Let Attackers Leak Cross-Origin Data (Exploit & Analysis)

Insufficient policy enforcement bugs can be the secret doorways for web attackers. CVE-2025-4664 concerns a serious flaw in Google Chrome’s Loader component, fixed in

May 13, 2025 Windows

CVE-2024-45332 - How Intel’s Indirect Branch Predictor Can Leak Sensitive Data (With Example Code & Exploit Explained)

In June 2024, a security flaw identified as CVE-2024-45332 was disclosed, affecting a range of Intel® processors. This vulnerability reveals how an attacker can expose

May 13, 2025

CVE-2024-28956 - Exploiting Intel Microarchitecture to Leak Sensitive Data via Transient Execution

In early 2024, security researchers identified a serious vulnerability in certain Intel(R) processors, now tracked as CVE-2024-28956. This issue centers around the leakage of

May 13, 2025 Windows Microsoft Exploit

CVE-2025-32709 - Exploiting Use-After-Free in Windows Ancillary Function Driver for WinSock (AFD.sys) for Local Privilege Escalation

On April 10, 2025, a new local privilege escalation vulnerability was uncovered in Microsoft Windows' core network subsystem, specifically in the Ancillary Function Driver