CVE-2024-3661 - How DHCP Route Injection Exposes VPN Traffic to Attackers (With Exploit Example)
Summary:
A new vulnerability, CVE-2024-3661, exposes a flaw in how VPNs rely on routing rules for security. By abusing DHCP’s _classless static route option_
CVE-2023-44487 - HTTP/2 Rapid Reset Attack Explained—with Exploit Code and How It Took Down Web Servers
In the second half of 2023, a pretty serious vulnerability was discovered and used in the wild. Named CVE-2023-44487, this bug targets the popular HTTP/