CVE-2025-31489 - MinIO Authorization Bypass with Invalid Signatures
MinIO is a popular, high-performance object storage system released under the GNU Affero General Public License v3.. Organizations and developers rely on it as a
CVE-2025-32050 - Buffer Under-Read in libsoup’s append_param_quoted() Function Explained
In June 2025, security researchers discovered and reported a vulnerability in libsoup, a popular HTTP client/server library heavily used in GNOME and other software.
CVE-2023-40714 - Understanding and Exploiting Path Traversal in Fortinet FortiSIEM
In September 2023, Fortinet published a security advisory for a newly discovered vulnerability: CVE-2023-40714. This bug affects several versions of FortiSIEM—Fortinet’s security information
CVE-2024-42325 - Zabbix User Enumeration and Sensitive Information Exposure via API
CVE-2024-42325 is a recently disclosed vulnerability affecting Zabbix, the popular open-source monitoring solution. The flaw lies in how the Zabbix API’s user.get method
CVE-2024-36465 - How Regular Zabbix Users Can Exploit SQL Injection via groupBy Parameter
In June 2024, a severe security vulnerability—CVE-2024-36465—was publicly disclosed for Zabbix, a popular open-source monitoring tool used to track the status of servers
Episode
00:00:00
00:00:00