CVE-2025-20125 - Exploiting an API Flaw in Cisco ISE for Privilege Escalation and Remote System Disruption
A newly discovered vulnerability in Cisco Identity Services Engine (ISE), tracked as CVE-2025-20125, lets attackers with only read-only credentials access sensitive information, change configurations, and
CVE-2025-20124 - How a Cisco ISE API Vulnerability Lets Hackers Run Code as Root
A major vulnerability has been identified in Cisco Identity Services Engine (ISE), assigned as CVE-2025-20124. This bug allows hackers, with only low-level authenticated access, to
CVE-2024-6356 - Security Policy Bot Cross-Project Access in GitLab EE – Analysis and Exploit Demo
CVE-2024-6356 is a newly discovered vulnerability affecting Enterprise Editions (EE) of GitLab, introducing a risk where the Security Policy Bot could interact with more projects
CVE-2024-1539 - How a GitLab API Info Leak Let Banned Group Members See Issue Updates
---
Intro: What is CVE-2024-1539?
CVE-2024-1539 is a newly discovered vulnerability in GitLab's Enterprise Edition (EE) that impacts a wide range of versions:
CVE-2025-25246 - Unauthenticated Remote Code Execution on NETGEAR XR100, XR100v2, and XR500 Routers
Recently, a serious security flaw, CVE-2025-25246, was discovered in several NETGEAR WiFi routers: XR100 (before 1...74), XR100v2 (before 1.1..22), and XR500 (before
Episode
00:00:00
00:00:00