CVE-2024-6595 - Exploiting GitLab's NPM Package Metadata Conflict
In June 2024, security researchers uncovered a vulnerability affecting GitLab CE/EE (Community Edition and Enterprise Edition), tracked as CVE-2024-6595. This flaw allowed attackers to
CVE-2024-21147 - Deep Dive into a Serious Oracle Java SE and GraalVM Hotspot Vulnerability
In April 2024, Oracle disclosed a high-impact vulnerability (CVE-2024-21147) affecting popular Java platforms: Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise. This
CVE-2024-21145 - Data Exposure and Manipulation in Oracle Java SE and GraalVM (Component: 2D)
Published: Oracle CPU April 2024
CVSS 3.1 Base Score: 4.8 (Confidentiality and Integrity impacts)
Components Affected: 2D (Java 2D Graphics)
CVE Record: CVE-2024-21145
CVE-2024-21140 - Exploiting the HotSpot Vulnerability in Oracle Java SE and Oracle GraalVM
In April 2024, Oracle announced a new security vulnerability: CVE-2024-21140. This hard-to-exploit flaw affects multiple versions of Oracle Java SE, Oracle GraalVM for JDK, and
CVE-2024-6468 - How a Simple IP Check in Vault Could Trigger Denial of Service
In June 2024, a serious vulnerability was disclosed in HashiCorp Vault and Vault Enterprise, tracked as CVE-2024-6468. This bug allowed unauthenticated attackers to crash Vault’
Episode
00:00:00
00:00:00