CVE-2024-53247 - Low-Privilege Remote Code Execution in Splunk Enterprise and Secure Gateway App
Splunk is a popular tool used by companies to monitor, search, and analyze machine-generated data. However, in June 2024, a critical vulnerability was disclosed: CVE-2024-53247.
CVE-2024-54147 - How Altair GraphQL Client Let Attackers Read All Your Data on Public WiFi
Altair GraphQL Client for Desktop didn’t verify HTTPS certificates before version 8..5. This means that if you used it on public WiFi or
CVE-2024-42494 - Ruijie Reyee OS Flaw Exposes All Linked Cloud Accounts—How Attackers Exploit It
In early 2024, security researchers uncovered a major vulnerability—CVE-2024-42494—impacting Ruijie Reyee OS, the operating system behind Ruijie’s popular smart routers and gateways.
CVE-2024-43048 - Understanding Memory Corruption via Malformed Input in GPU Headroom API
CVE-2024-43048 is a recently disclosed vulnerability that affects systems exposing the GPU Headroom API. If a specially crafted, invalid input is passed to this API,
CVE-2024-11702 - How Firefox and Thunderbird Leaked Your Private Data on Android Through Cloud Clipboard
---
1. Introduction
Passwords, credit card numbers, secret project notes: you expect all of that to stay locked down in Private Browsing windows and tabs.
Episode
00:00:00
00:00:00