CVE-2024-7264 - Exploiting libcurl’s ASN1 Time Parsing Bug for Heap Data Disclosure
Libcurl is a core networking and download library used in countless applications and systems. In early 2024, a serious vulnerability was discovered (CVE-2024-7264) within its
CVE-2024-42108 - Deep Dive Into a Linux Kernel Use-After-Free in `rswitch_poll()`
On June 2024, the Linux community patched a critical issue in the kernel’s Realtek Switch (rswitch) driver. Registered as CVE-2024-42108, this vulnerability is a
CVE-2024-37084 - How a Simple Upload Bug in Spring Cloud Data Flow Let Hackers Compromise Your Skipper Server
> Summary:
CVE-2024-37084 is a high-severity vulnerability discovered in Spring Cloud Data Flow, specifically in versions before 2.11.4. This bug allows an attacker
CVE-2024-41110 - Docker Engine AuthZ Plugin Bypass via API Body Omission
In this long read, we’ll dive deep into CVE-2024-41110—a newly discovered security vulnerability in Moby, the core open-source project underpinning Docker Engine. This
CVE-2024-6327 - Remote Code Execution in Progress® Telerik® Report Server Exploited via Insecure Deserialization
A nasty bug has been found in Progress® Telerik® Report Server that lets attackers run their own code on a vulnerable server. This weakness, tracked
Episode
00:00:00
00:00:00