CVE-2025-0254 - HCL Digital Experience Ring API & dxclient Vulnerable to Man-in-the-Middle Attacks (MitM) Before 9.5 CF226
---
What is CVE-2025-0254?
A new security flaw dubbed CVE-2025-0254 was found in certain components of HCL Digital Experience (DX). If you use the Ring
CVE-2025-2311 - Breaking Down the SecHard Pre-3.3..20220411 Vulnerability – Authentication Bypass, Credential Exposure, and API Abuse
Published: June 2024
Affected Product: SecHard (by Sechard Information Technologies)
Affected Version: Before 3.3..20220411
The security community has identified a serious vulnerability in
CVE-2025-0628 - Improper Authorization in BerriAI/litellm Lets Regular Users Become Proxy Admins
Published: June 2024
CVSS Score: 8.8 (High)
Summary:
A new high-impact vulnerability—CVE-2025-0628—has been found in the main-latest version of BerriAI/litellm. This
CVE-2024-6842 - Sensitive API Keys Leak in mintplex-labs/anything-llm v1.5.5 Through `/setup-complete` Endpoint
CVE-2024-6842 is a critical vulnerability that impacts version 1.5.5 of the open-source project mintplex-labs/anything-llm. The flaw lies in the improperly secured /setup-complete
CVE-2024-12720 - Deep Dive into a ReDoS Flaw in huggingface/transformers (v4.46.3)
The world of machine learning relies heavily on open source libraries for productivity and performance. Hugging Face's transformers is one of the most
Episode
00:00:00
00:00:00