API - CVE CyberSecurity Database News (Page 153)

CVE-2024-21145 - Data Exposure and Manipulation in Oracle Java SE and GraalVM (Component: 2D)

Jul 16, 2024 API SOAP Java Oracle

CVE-2024-21145 - Data Exposure and Manipulation in Oracle Java SE and GraalVM (Component: 2D)

Published: Oracle CPU April 2024 CVSS 3.1 Base Score: 4.8 (Confidentiality and Integrity impacts) Components Affected: 2D (Java 2D Graphics) CVE Record: CVE-2024-21145

Jul 16, 2024 API Exploit Java Oracle

CVE-2024-21140 - Exploiting the HotSpot Vulnerability in Oracle Java SE and Oracle GraalVM

In April 2024, Oracle announced a new security vulnerability: CVE-2024-21140. This hard-to-exploit flaw affects multiple versions of Oracle Java SE, Oracle GraalVM for JDK, and

Jul 11, 2024 API Exploit

CVE-2024-6468 - How a Simple IP Check in Vault Could Trigger Denial of Service

In June 2024, a serious vulnerability was disclosed in HashiCorp Vault and Vault Enterprise, tracked as CVE-2024-6468. This bug allowed unauthenticated attackers to crash Vault’

Jul 11, 2024 API Exploit

CVE-2024-6385 - GitLab Pipeline Impersonation Vulnerability — Deep Dive, Exploit, and Protection

A serious security vulnerability was found in GitLab Community Edition (CE) and Enterprise Edition (EE): CVE-2024-6385. This flaw lets attackers trigger CI/CD pipelines as

Jul 11, 2024 API

CVE-2024-5257 - Exploiting Group Namespace URL Change in GitLab Custom Roles (Explained Simply)

In June 2024, a security issue was discovered in GitLab CE/EE, affecting all versions starting from 17. up to (but not including) 17..4,