CVE-2024-4956 - Path Traversal in Sonatype Nexus Repository 3 Exposes Sensitive System Files (Exploit Included)
A new and dangerous vulnerability (CVE-2024-4956) has been discovered in Sonatype Nexus Repository 3, a tool used by thousands of organizations to manage software components.
CVE-2024-4948 - Use-After-Free in Dawn in Google Chrome Explained – How Attackers Exploit Heap Corruption with Crafted HTML
A recent critical security issue, tracked as CVE-2024-4948, has shaken the web browser world. This vulnerability affects Google Chrome—specifically, versions prior to 125..6422.
CVE-2024-25743 - Linux Kernel AMD SEV-SNP/SEV-ES Virtual Interrupt Injection Vulnerability Explained
In early 2024, a serious vulnerability—CVE-2024-25743—was discovered in the Linux kernel up to version 6.9. This flaw allows an untrusted hypervisor to
CVE-2024-30048 - How Attackers Can Spoof Dynamics 365 Customer Insights – A Deep Dive
In early 2024, Microsoft published a security advisory detailing CVE-2024-30048, which exposes a spoofing vulnerability in Dynamics 365 Customer Insights. While Microsoft has since released
CVE-2024-30043 - A Closer Look at the Microsoft SharePoint Server Information Disclosure Vulnerability
Published: June 2024
What is CVE-2024-30043?
CVE-2024-30043 is an information disclosure vulnerability in Microsoft SharePoint Server. First patched in June 2024, this bug caught the
Episode
00:00:00
00:00:00