CVE-2025-0451 - How a Google Chrome Extensions API Flaw Enabled UI Spoofing Attacks
In early 2025, security researchers identified a medium-severity vulnerability in Google Chrome, formally registered as CVE-2025-0451. This flaw, present in Chrome versions prior to 133.
CVE-2025-1009 - Use-After-Free in XSLT Handling Hits Firefox and Thunderbird
A new browser vulnerability has come to light: CVE-2025-1009. This security hole allows a hacker to trigger a use-after-free bug by feeding specially crafted XSLT
CVE-2024-34897 - API Key Disclosure in Nedis SmartLife Android App v1.4. — How It Works and What It Means for You
---
In June 2024, security researchers published information on a critical vulnerability, CVE-2024-34897, found in the Nedis SmartLife Android app v1.4.. This long read
CVE-2025-20631 - Out-of-Bounds Write in WLAN AP Driver (Exploit & Analysis)
A new critical vulnerability, CVE-2025-20631, was discovered in the WLAN Access Point (AP) driver affecting several wireless chipsets used in popular mobile and embedded devices.
CVE-2024-1211 - GitLab JWT OmniAuth CSRF Vulnerability Explored
If your organization uses GitLab for source control and has enabled JWT as an OmniAuth provider, you may be at risk of a newly disclosed
Episode
00:00:00
00:00:00