CVE-2024-8636 - Heap Buffer Overflow in Skia - How a Crafted HTML Page Can Hack Your Chrome
In early 2024, a serious security bug—CVE-2024-8636—was found in the Skia graphics library, which is used by Google Chrome. Chrome versions before 128.
CVE-2024-40659 - Disabling AndroidKeyStore Key Generation via Faulty Attestation Key Validation
Android’s security infrastructure greatly depends on the integrity and isolation of cryptographic keys managed by the AndroidKeyStore system. However, CVE-2024-40659 has revealed a striking
CVE-2024-45409 - Critical Authentication Bypass in Ruby SAML Library – How Hackers Could Forge Logins (Exploit Details Inside)
CVE-2024-45409 is a serious vulnerability affecting the Ruby SAML library, which is widely used by developers to add SAML-based Single Sign-On (SSO) to their Ruby
CVE-2024-43487 - Windows Mark of the Web (MotW) Security Bypass Explained — Full Details and Exploit Walkthrough
---
Introduction
In May 2024, Microsoft disclosed CVE-2024-43487, a security vulnerability affecting the Windows Mark of the Web (MotW) feature. Mark of the Web is
CVE-2024-43491 - How a Servicing Stack Bug Reopened Old Security Holes on Windows 10 Version 1507
*Published: June 2024*
Microsoft recently reported a new vulnerability, CVE-2024-43491, that impacts some Windows 10 systems in a unique way. This flaw doesn’t exist
Episode
00:00:00
00:00:00