CVE-2024-12797 - How a Raw Public Key TLS Authentication Bug in OpenSSL Can Let MITM Attacks Slip Through
---
Introduction
In March 2024, a significant vulnerability—CVE-2024-12797—was disclosed in OpenSSL affecting some clients using RFC725 Raw Public Keys (RPK) for TLS or
CVE-2025-24812 - Denial of Service Vulnerability in Siemens SIMATIC & SIPLUS S7-120 PLCs (Port 102/tcp)
In June 2024, a new vulnerability was revealed affecting a broad range of Siemens SIMATIC S7-120 and SIPLUS S7-120 PLCs (Programmable Logic Controllers). This issue,
CVE-2025-26408 - Full Device Takeover via Exposed JTAG on Wattsense Bridge (All Versions Affected)
---
Summary
In early 2025, security researchers uncovered a serious vulnerability — now known as CVE-2025-26408 — affecting all versions of Wattsense Bridge devices. The root of
CVE-2025-26409 - Walkthrough of Serial Interface Exploit on Wattsense Bridge (Root Shell Access from PCB!)
Recently, CVE-2025-26409 was published, revealing a physical security flaw in Wattsense Bridge devices. With direct access to the PCB (printed circuit board) of these IoT
CVE-2025-26410 - Wattsense Bridge Hard-Coded Credentials Exposed — Exploit Details & Code Samples
In early 2025, security researchers discovered a serious vulnerability in the firmware running on all Wattsense Bridge devices. This flaw, now catalogued as CVE-2025-26410, exposes
Episode
00:00:00
00:00:00