CVE-2024-8312 - How a Simple Search Box Let Attackers Run Code in GitLab—Understanding & Exploiting the Global Search XSS Bug
On June 2nd, 2024, the GitLab security team published an advisory about a serious Cross-Site Scripting (XSS) vulnerability affecting the popular code collaboration service, GitLab
CVE-2024-20481 - How a Flood of VPN Requests Can Take Down Cisco ASA and FTD Devices
If you’re running Cisco Adaptive Security Appliance (ASA) or Cisco Firepower Threat Defense (FTD) and have Remote Access VPN (RAVPN) enabled, a serious vulnerability
CVE-2024-20412 - How Static Credentials in Cisco FTD Can Open Your Firewalls to Attack
Imagine you trust your firewall to stop cyber attackers. But a hidden set of user accounts with static passwords could let someone walk right in.
CVE-2024-20402 - Unpacking the Cisco ASA and FTD SSL VPN Denial-of-Service Vulnerability
In early 2024, Cisco published an advisory detailing a critical security vulnerability affecting two of its flagship products: the Adaptive Security Appliance (ASA) and Firepower
CVE-2024-47575 - How a Critical Auth Bypass in FortiManager Lets Attackers Run Wild
In June 2024, a serious vulnerability—CVE-2024-47575—was uncovered in FortiManager and FortiManager Cloud. This bug is especially dangerous: it allows hackers to run commands
Episode
00:00:00
00:00:00