CVE-2023-5183 - Exploiting Unsafe JSON Deserialization in Illumio PCE’s network_traffic API Endpoint
In early 2023, a critical vulnerability—CVE-2023-5183—was disclosed, affecting the Illumio Policy Compute Engine (PCE), a widely-deployed security solution in enterprise environments. This vulnerability
CVE-2023-5168 - Out-of-Bounds Write in Firefox on Windows Can Lead to Privileged Process Exploitation
A serious security flaw, CVE-2023-5168, was discovered in Firefox, Firefox ESR, and Thunderbird for Windows. This vulnerability allows a compromised content process to provide malicious
CVE-2023-39347 - How Manipulating Pod Labels in Cilium Can Bypass Network Policies
Cilium has become a core building block for cloud native networking, observability, and security, powered by eBPF. Many Kubernetes clusters use Cilium to apply fine-grained
CVE-2023-41301 - Unauthorized API Access Vulnerability in the PMS Module
In 2023, a serious security vulnerability identified as CVE-2023-41301 was discovered in the Property Management System (PMS) module of several widely-used applications. This flaw allows
CVE-2023-42812 - Server Side Request Forgery (SSRF) Vulnerability in Galaxy Before Version 22.05 – Full Breakdown and Exploit Example
Galaxy is a popular open-source platform widely used for FAIR (Findable, Accessible, Interoperable, and Reusable) data analysis in scientific research. It enables researchers to easily
Episode
00:00:00
00:00:00