CVE-2024-12292 - Sensitive Information Leakage via GraphQL Logs in GitLab CE/EE (11.–17.6.1) — Details, Exploit, and Mitigation
On March 6, 2024, GitLab disclosed an information disclosure vulnerability (CVE-2024-12292) affecting its Community Edition (CE) and Enterprise Edition (EE). The flaw exists in all
CVE-2024-10043 - GitLab Wiki Diff Feature Discloses Confidential Incident Titles – Deep Dive, Exploit Demo, and Remediation
On February 2024, a critical security issue dubbed CVE-2024-10043 was publicly disclosed affecting GitLab EE (Enterprise Edition). This vulnerability, found in specific GitLab versions, makes
CVE-2024-54534 - Memory Corruption via Malicious Web Content in Apple OSes – Exploit Details and Patch Information
In June 2024, CVE-2024-54534 was disclosed by Apple, alerting users and developers about a memory corruption vulnerability found in the WebKit engine. This vulnerability could
CVE-2024-49098 - Cracking Open Windows WWAN Service – How Attackers Get Your Private Data
Microsoft Windows powers much of the modern world, but when a deep system service gets a security flaw, almost anyone can be at risk without
CVE-2024-49099 - Cracking Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability
In June 2024, Microsoft patched a serious vulnerability labeled CVE-2024-49099. This flaw affects the Wireless Wide Area Network (WWAN) Service, better known as WwanSvc, present
Episode
00:00:00
00:00:00