CVE-2025-24011 - Information Disclosure in Umbraco CMS UserExistance via API Timing Attack
In June 2025, a new vulnerability has been disclosed for the Umbraco .NET content management system (CMS), tracked as CVE-2025-24011. This issue affects all releases
CVE-2024-57939 - A Deep Dive Into the RISC-V Linux Kernel die() Sleeping Bug (And How It Was Fixed)
Summary:
A recent vulnerability in the Linux kernel, impacting RISC-V systems running with PREEMPT_RT (Real-Time Preemption), could potentially lead to sleeping in an invalid
CVE-2025-21664 - Fixing a Race Condition in Linux Kernel's dm-thin with RCU-Safe List Traversal
The Linux kernel is incredible, but like any complex system, it sometimes suffers from subtle bugs—especially around concurrency. One such issue, CVE-2025-21664, affected the
CVE-2025-21659 - How a Linux Kernel Netdev Bug Could Let Attackers Access NAPI Across Namespaces
In June 2024, security researchers and kernel maintainers discovered and patched a serious issue in the Linux kernel’s network device (netdev) subsystem. This bug,
CVE-2024-43709 - Exploiting Resource Allocation Limits in Elasticsearch with SQL Functions
---
Elasticsearch is one of the most used search and analytics engines in the world, powering everything from simple enterprise search to massive public web
Episode
00:00:00
00:00:00