CVE-2023-39951 - How OpenTelemetry Java Instrumentation Leaked Your Email Content via AWS SES
OpenTelemetry has become a backbone for modern application tracing, providing engineers with deep insights into application health and performance. However, as with any powerful tool,
CVE-2023-38185 - Unpacking the Microsoft Exchange Server Remote Code Execution Vulnerability
---
If you manage a Microsoft Exchange Server, you know they're vital to business communications—but they're also highly targeted by hackers.
CVE-2023-37486 - How SAP Commerce OCC API Leaked Sensitive Info — Deep Dive, Proof of Concept, and Mitigation
SAP Commerce is a leading solution for handling digital commerce, powering online shops, catalogs, checkouts, and customer accounts for many big companies all over the
CVE-2023-37470 - Remote Code Execution in Metabase via H2 Connection String Injection
Metabase is a widely used open-source business intelligence (BI) and analytics platform, popular for helping users visualize and analyze their data with ease. In
CVE-2023-36480 - Remote Code Execution in Aerospike Java Client – Exploit Analysis & Mitigation
On June 22, 2023, a critical vulnerability was announced affecting the Aerospike Java Client—a widely used library that allows Java applications to connect to
Episode
00:00:00
00:00:00