CVE-2023-33953 - How gRPC HPACK Table Parsing Errors Expose Your API to DoS Attacks
gRPC is a widely used framework for high-performance, language-agnostic Remote Procedure Calls. It sits at the core of many microservice architectures. But if you’re
CVE-2023-39951 - How OpenTelemetry Java Instrumentation Leaked Your Email Content via AWS SES
OpenTelemetry has become a backbone for modern application tracing, providing engineers with deep insights into application health and performance. However, as with any powerful tool,
CVE-2023-38185 - Unpacking the Microsoft Exchange Server Remote Code Execution Vulnerability
---
If you manage a Microsoft Exchange Server, you know they're vital to business communications—but they're also highly targeted by
CVE-2023-37486 - How SAP Commerce OCC API Leaked Sensitive Info — Deep Dive, Proof of Concept, and Mitigation
SAP Commerce is a leading solution for handling digital commerce, powering online shops, catalogs, checkouts, and customer accounts for many big companies all over the
CVE-2023-37470 - Remote Code Execution in Metabase via H2 Connection String Injection
Metabase is a widely used open-source business intelligence (BI) and analytics platform, popular for helping users visualize and analyze their data with ease. In mid-2023,
Episode
00:00:00
00:00:00