CVE-2024-24476 - Buffer Overflow in Wireshark (pan/addr_resolv.c, ws_manuf_lookup_str()) – Disputed by Vendor
Wireshark is one of the most widely used network protocol analyzers. In early 2024, the cybersecurity community posted an alert about a possible serious flaw:
CVE-2023-42945 - Analyzing a Bluetooth Permissions Flaw in macOS Sonoma and How Hackers May Exploit It
On October 25, 2023, Apple published a macOS security update addressing a critical permissions vulnerability labeled as CVE-2023-42945. This flaw allowed malicious apps to gain
CVE-2024-0016 - Unveiling an Out-of-Bounds Read Vulnerability Exposing Paired Device Info
CVE-2024-0016 refers to a newly-disclosed vulnerability that affects several widely-used Bluetooth and device pairing codebases. The vulnerability is a classic out-of-bounds read: a section of
CVE-2024-0031 - Out-of-Bounds Write in att_protocol.cc Allows Remote Code Execution with No User Interaction
A new critical vulnerability, CVE-2024-0031, has been discovered in the popular Bluetooth stack implementation, specifically within the function attp_build_read_by_type_value_cmd
CVE-2023-40111 - Understanding the Android MediaSession Confused Deputy Vulnerability
---
CVE-2023-40111 is a critical vulnerability in the Android operating system, specifically within the media framework. This bug lets local apps abuse a “confused deputy”
Episode
00:00:00
00:00:00