CVE-2024-22871 - Denial of Service in Clojure via clojure.core$partial$fn\_\_592
On February 2024, a new vulnerability was identified in Clojure, affecting versions 1.2. through 1.12.-alpha5. Assigned the identifier CVE-2024-22871, this bug lets
CVE-2023-38367 - How Unauthenticated Attackers Can Control IBM Cloud Pak Foundational Services IdP (with Exploit Details)
In mid-2023, IBM disclosed a critical security issue—tracked as CVE-2023-38367—in its Cloud Pak Foundational Services Identity Provider (IdP) API. Affecting a range of
CVE-2024-26461 - Understanding the Kerberos 5 (krb5) 1.21.2 Memory Leak Vulnerability in k5sealv3.c
In March 2024, a new vulnerability (CVE-2024-26461) was identified in the popular authentication protocol, Kerberos 5 (krb5), specifically affecting version 1.21.2. This security
CVE-2023-25921 - How IBM Security Guardium Key Lifecycle Manager Exposed Itself to Dangerous File Uploads
In early 2023, security researchers uncovered a serious vulnerability in IBM Security Guardium Key Lifecycle Manager—commonly referred to as SKLM—from version 3. up
CVE-2024-25579 - OS Command Injection in ELECOM Routers (WMC-X180GST-B/e-Mesh Starter Kit) Explained
In early 2024, a critical OS command injection vulnerability was discovered in several ELECOM wireless LAN routers, most notably in the WMC-X180GST-B model, which is
Episode
00:00:00
00:00:00