CVE-2025-24789 - Privilege Escalation in Snowflake JDBC Driver on Windows (EXTERNALBROWSER Auth Vulnerability Explained)
---
Summary
A major vulnerability (CVE-2025-24789) was found in the Snowflake JDBC Driver, affecting Windows systems where the EXTERNALBROWSER authentication method is used. This post
CVE-2025-24790 - Snowflake JDBC Driver World-Readable Credential Leak
Snowflake is a widely used cloud data platform and its JDBC driver enables Java applications to connect securely to Snowflake instances. Recently, a critical vulnerability
CVE-2025-0617 - Exploiting XML Entity Expansion to Crash Hx 10.. and Prior — A Simple Guide
CVE-2025-0617 targets a critical vulnerability in the HX console (version 10.. and earlier). If you run administrative systems based on Hx, you should read this.
CVE-2024-40675 - Intent.java Infinite Loop Vulnerability Explained (With Exploit and Analysis)
In June 2024, the Android security community flagged a vulnerability, tracked as CVE-2024-40675, that could allow a malicious app or process to trigger a local
CVE-2024-40677 - Exploiting Factory Reset Bypass in AdvancedPowerUsageDetail.java (Android Local Privilege Escalation)
---
Summary
A new Android vulnerability, CVE-2024-40677, has been disclosed in the AdvancedPowerUsageDetail.java class. This flaw allows local attackers to bypass factory reset protections
Episode
00:00:00
00:00:00