CVE-2025-21360 - Unpacking the Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability
In the realm of cybersecurity, even the most trusted software can be the source of critical vulnerabilities. One such issue —
CVE-2025-21360, discovered in Microsoft AutoUpdate
CVE-2025-0244 - Firefox Android Address Bar Spoof via Invalid Protocol Redirection
A critical security vulnerability (CVE-2025-0244) has been discovered in Firefox for Android, before version 134, allowing attackers to spoof the address bar by abusing how
CVE-2025-22275 - iTerm2 Information Disclosure via /tmp/framer.txt Leak (Explained & Exploited)
Summary:
A new vulnerability in iTerm2—the popular terminal emulator for macOS—has been assigned CVE-2025-22275. Versions 3.5.6 through 3.5.10 (before
CVE-2024-56737 - Heap Buffer Overflow in GRUB2’s HFS Filesystem Parser (fs/hfs.c)
CVE-2024-56737 is a recently discovered vulnerability that affects the GNU GRUB bootloader (often just called GRUB2), specifically in the way it handles the Apple HFS
CVE-2024-53961 - Critical Path Traversal in ColdFusion (2023.11, 2021.17, and Earlier) – Exploit Analysis and How to Secure Your Systems
Adobe ColdFusion continues to be a key platform for many web applications and custom enterprise solutions. But with great power comes great responsibility — and, unfortunately,
Episode
00:00:00
00:00:00