CVE-2025-20393 - Critical Cisco Secure Email Gateway Vulnerability Explained, with Exploit Details
In June 2024, security researchers revealed a critical vulnerability in the Spam Quarantine feature of Cisco AsyncOS, affecting both Cisco Secure Email Gateway and Cisco
CVE-2025-46295 - How Apache Commons Text Vulnerability Put FileMaker Server at Risk
CVE-2025-46295 is the identifier for a high-risk vulnerability in Apache Commons Text, a widely used Java library. In this long read, we’ll break down
CVE-2025-67896 - Exploiting Exim's Heap Buffer Overflow via Rate-Limit Configurations (Exim < 4.99.1)
---
Exim, the widely-used mail transfer agent (MTA), is once again in the spotlight after the announcement of CVE-2025-67896. This security issue impacts Exim versions
CVE-2025-55182 - Pre-auth RCE in React Server Components – How Deserialization Opened the Door
React Server Components bring a lot of power to web development, but sometimes power comes with risk. In early 2025, a major vulnerability—CVE-2025-55182—was
CVE-2025-11001 - 7-Zip ZIP File Directory Traversal RCE Explained (with Exploit Details)
In early 2025, a new critical vulnerability was identified in the widely used 7-Zip compression software. Tracked as CVE-2025-11001 (formerly ZDI-CAN-26753), this flaw allows an
Episode
00:00:00
00:00:00