CVE-2025-25467 - How A Memory Leak in libx264 Lets Attackers Run Code with a Malicious AAC File
Published: June 2024
Severity: Critical
Affected Project: libx264 (git master)
Vulnerability Type: Insufficient Memory Tracking and Release
Attack Vector: Crafted AAC File
Introduction
A brand
CVE-2025-22654 - Unrestricted Upload of Dangerous Files in kodeshpa Simplified (All Versions up to 1..6)
A serious security vulnerability, CVE-2025-22654, has been discovered in kodeshpa Simplified, a popular content management system used for website building and management. This vulnerability makes
CVE-2025-24895 - Critical SAML Signature Validation Bypass in CIE.AspNetCore.Authentication
Published: June 2024
Affected package: cie-aspnetcore (CIE.AspNetCore.Authentication)
Fixed in: v2.1.
Impact: Remote user impersonation (Critical)
CVSS Score: 9.8 (Critical)
Introduction
Remote
CVE-2025-26620 - Race Condition Vulnerability in Duende.AccessTokenManagement for .NET
CVE-2025-26620 is a newly disclosed vulnerability affecting the Duende.AccessTokenManagement library for .NET, which is widely used for managing OAuth and OpenID Connect access tokens.
CVE-2025-21703 - Linux Kernel netem Use-After-Free Exploit Explained
The Linux kernel is the backbone of almost every server and many desktops out there. When something’s wrong in the kernel, it can impact
Episode
00:00:00
00:00:00