CVE-2025-48493 - Sensitive Redis AUTH Credentials Logged in Plain Text by Yii2 Redis Extension
If you build web applications using the PHP Yii2 framework, you might use the Yii2 Redis extension to connect your app to a Redis database.
CVE-2025-25022 - Info Leak in IBM QRadar Suite & Cloud Pak for Security – Exploit & Analysis
A new critical vulnerability, CVE-2025-25022, has shaken the cybersecurity world. This flaw affects IBM QRadar Suite Software versions 1.10.12. through 1.11.2.
CVE-2025-4517 - Arbitrary Filesystem Write via Python `tarfile` Extraction with `filter="data"`
A new vulnerability, CVE-2025-4517, has been discovered in Python’s popular tarfile module. This issue allows attackers to write arbitrary files anywhere on your filesystem
CVE-2024-12718 - How Python’s tarfile Extraction Filters Can Mess with Your Files
What is CVE-2024-12718?
CVE-2024-12718 is a newly reported vulnerability in the Python tarfile module. In simple words, it’s a security hole in how Python
CVE-2025-21479 - Memory Corruption via Unauthorized GPU Micronode Command Execution — Details and Exploit Walkthrough
Published: June 2024
Severity: Critical
CVE ID: CVE-2025-21479
Vulnerable Component: GPU Driver Micronode Command Handler
Reported By: GPUsec Team
Overview
In April 2024, security researchers
Episode
00:00:00
00:00:00