CVE-2025-46392 - Uncontrolled Resource Consumption in Apache Commons Configuration 1.x
A newly published vulnerability, CVE-2025-46392, affects the popular Apache Commons Configuration 1.x library. This vulnerability exposes systems to risks of Denial of Service (DoS)
CVE-2024-13009 - Buffer Handling Flaw in Eclipse Jetty’s Gzip Requests Explained
Web servers handle lots of data, and the way they manage memory is crucial for both performance and security. Eclipse Jetty is a popular Java-based
CVE-2025-1948 - How Eclipse Jetty HTTP/2 Servers Fall to SETTINGS_MAX_HEADER_LIST_SIZE Attack
Eclipse Jetty is a popular lightweight, Java-based web server and servlet container, used widely for simple sites and large-scale cloud service backends. But recently, Jetty
CVE-2025-27533 - Memory Allocation with Excessive Size Value in Apache ActiveMQ - Understanding the Risk and Fix
In June 2024, a critical security vulnerability was assigned to Apache ActiveMQ, known as CVE-2025-27533. This flaw involves improper validation of buffer size during the
CVE-2025-2905 - XXE in WSO2 API Manager Gateway – Exploiting XML Path Injection for Data Theft and Denial of Service
Published: 2024-06-01 <br>Severity: High <br>CVSS: 8.3 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/
Episode
00:00:00
00:00:00