CVE-2020-36843: EdDSA-Java Signature Malleability Exploit in Versions through .3.
A security vulnerability has recently been discovered in the EdDSA-Java (aka ed25519-java) library, specifically in versions up to and including .3.. This vulnerability,
CVE-2025-29891 - Bypass/Injection Vulnerability in Apache Camel—Details, Exploit, and How to Stay Safe
Published: June 2024
Severity: Medium–High
Affected Versions:
What is CVE-2025-29891?
A serious bypass/injection vulnerability has been found in multiple versions of
CVE-2025-24813 - Exploiting Path Equivalence and Internal Dots in Apache Tomcat – Remote Code Execution & Sensitive File Disclosure
Apache Tomcat is one of the most popular web servers used around the world, powering everything from development servers to large-scale production services. In
CVE-2025-25614 - Privilege Escalation in Unifiedtransform 2. via Incorrect Access Control
Unifiedtransform is a popular open-source school management and examination platform, used by educational institutions worldwide. But in early 2025, a security issue—now indexed
CVE-2025-27636 - Exploiting Method Invocation Injection in Apache Camel-Bean Component
Published: 2025-02-29
Severity: High (Bypass/Injection)
Affected Packages: apache-camel (see Advisory)
Patched in: 4.10.2 (4.10.x LTS), 4.8.
Episode
00:00:00
00:00:00