CVE-2023-34429 - How a Forged JWT Token Can Crash Weintek Weincloud v.13.6
Weintek Weincloud is a popular cloud service for connecting and monitoring Human-Machine Interfaces (HMI) in industrial setups. In May 2023, a significant vulnerability, CVE-2023-34429, was
CVE-2023-37899 - How a Malicious Socket.io Message Could Crash Your FeathersJS App
FeathersJS is a popular framework that helps developers quickly build web APIs and real-time applications using TypeScript or JavaScript. It leverages robust libraries like Socket.
CVE-2023-37733 - How A File Upload Bug In tduck-platform v4. Lets Attackers Run Code on Your Server
Security vulnerabilities come in many shapes and sizes, but few are as dangerous as unrestricted file uploads. In 2023, researchers discovered a nasty bug in
CVE-2023-30799 - How MikroTik's Privilege Escalation Bug Lets Attackers Take Over Routers
MikroTik routers are found everywhere — in small business networks, homes, and even some larger companies’ infrastructure. But a serious security hole, called CVE-2023-30799, has been
CVE-2023-22044 - Breaking Down the Oracle Java SE and GraalVM Hotspot Vulnerability
A new security hole, CVE-2023-22044, affects several popular Java products from Oracle—including Java SE and GraalVM’s enterprise releases. In simple terms, this bug
Episode
00:00:00
00:00:00