API Security - CVE CyberSecurity Database News (Page 3)

Sep 20, 2023 API API Security Exploit NVIDIA DGX H100 BMC

CVE-2023-31012 - Exploiting Improper Input Validation in NVIDIA DGX H100 BMC REST Service

--- Introduction In 2023, NVIDIA disclosed a serious security issue affecting its DGX H100 Baseboard Management Controller (BMC) – identified as CVE-2023-31012. This vulnerability exists in

Jun 6, 2023 API API Security Exploit GraphQL GitLab

CVE-2023-0921 - How a Simple Oversight in GitLab’s GraphQL API Can Lead to DoS—With Code Examples and Exploit Details

CVE-2023-0921 reveals a denial-of-service (DoS) flaw in GitLab Community/Enterprise Editions. Authenticated users could abuse the GraphQL API to create Issue descriptions of massive size—

Jun 2, 2023 API API Security Exploit Mozilla Firefox ESR

CVE-2023-25743 - How a Fullscreen Notification Bug in Firefox Focus Opened the Door for Browser Spoofing

CVE-2023-25743 is a subtle but surprisingly dangerous vulnerability that was discovered in Firefox Focus, Mozilla’s privacy-focused mobile browser. This bug allowed malicious websites to

Apr 12, 2022 Windows Microsoft API API Security SQL

CVE-2022-24765 Git for Windows is a fork of Git containing Windows-specific patches. It's vulnerable to LUKS hard disk encryption key compromise.

GIT_DIR` in the Windows registry, which will then be picked up by Git operations. This vulnerability has been patched in Git for Windows v2.