CVE-2024-12224 - How Improper Validation in idna (Rust's punycode crate) Opens the Door to Hostname Confusion Attacks
In early 2024, security researchers uncovered a vulnerability—CVE-2024-12224—affecting the idna crate, which is a crucial part of Rust's popular rust-url library.
CVE-2025-46701 - Security Constraint Bypass in Apache Tomcat CGI Servlet (Case Sensitivity Vulnerability)
On June 12, 2024, a new security vulnerability, CVE-2025-46701, was published that affects multiple versions of the Apache Tomcat server. This vulnerability is due to
CVE-2025-22252 - Authentication Bypass in FortiGate, FortiProxy & FortiSwitchManager Explained
Published: June 2024
Author: SecurityEasyReads
Introduction
A serious vulnerability, CVE-2025-22252, affects several Fortinet products, including FortiProxy (7.6.-7.6.1), FortiSwitchManager (7.2.5)
CVE-2025-5283 - Use-After-Free in libvpx Before Chrome 137..7151.55 — How Attackers Could Exploit It
In early 2025, security researchers discovered a serious bug tracked as CVE-2025-5283 affecting libvpx—the video codec library used by Google Chrome. This vulnerability occurs
CVE-2025-5281 - Exploiting BFCache in Google Chrome to Leak User Information
A critical new browser bug, identified as CVE-2025-5281, has caught the cybersecurity community’s attention. This flaw, found in the careful workings of the Back/
Episode
00:00:00
00:00:00