CVE-2024-34274 - How OpenBD Cookie Deserialization Can Lead To Remote Code Execution
If you're running an old version of Open BlueDragon (OpenBD), specifically the build 20210306203917-6cbe797, you should be aware of a critical security issue:
CVE-2024-31879 - How A Deserialization Bug Lets Attackers Crash IBM i Systems (and Maybe More)
If you use IBM i, especially versions 7.2, 7.3, or 7.4, you want to pay attention to a new vulnerability: CVE-2024-31879. This
CVE-2024-4956 - Path Traversal in Sonatype Nexus Repository 3 Exposes Sensitive System Files (Exploit Included)
A new and dangerous vulnerability (CVE-2024-4956) has been discovered in Sonatype Nexus Repository 3, a tool used by thousands of organizations to manage software components.
CVE-2024-32888 - Exploiting SQL Injection in Amazon Redshift JDBC Driver (`preferQueryMode=simple`)
In June 2024, a new security vulnerability was disclosed in the Amazon Redshift JDBC Driver, tracked as CVE-2024-32888. This vulnerability allows SQL injection attacks when
CVE-2024-30059 - Understanding and Exploiting Microsoft Intune for Android MAM Tampering
Microsoft Intune is a leading endpoint management tool, often relied upon by enterprises to secure devices and apps, especially in BYOD (bring your own device)
Episode
00:00:00
00:00:00