CVE-2025-64148 - Exploiting a Missing Permission Check in Jenkins Publish to Bitbucket Plugin
CVE-2025-64148 is a recently discovered security vulnerability in the Jenkins Publish to Bitbucket Plugin, affecting version .4 and earlier. This flaw arises from a missing
CVE-2025-62168 - Squid Proxy Authentication Leak – How Attackers Steal Your Secrets (With Example & Fix)
On June 10, 2024, a new security issue was discovered impacting Squid, the widely-used web caching proxy. Identified as CVE-2025-62168, this vulnerability allows attackers to
CVE-2025-55695 - Out-of-Bounds Read in Windows WLAN Auto Config Service Enables Local Info Disclosure
In June 2025, a new Windows vulnerability was uncovered and assigned CVE-2025-55695. This bug affects the Windows WLAN Auto Config Service (also known as wlansvc)
CVE-2025-59204 - Exploiting Uninitialized Resource in Windows Management Services For Local Information Disclosure
A new vulnerability, CVE-2025-59204, has recently been assigned to a security flaw discovered in Windows Management Services (WMS). This vulnerability, when exploited correctly, enables an
CVE-2025-37727 - Insertion of Sensitive Information in Elasticsearch Reindex API Logs
Elasticsearch is a popular open-source distributed search and analytics engine. It’s used by thousands of organizations for storing and quickly searching large amounts of
Episode
00:00:00
00:00:00