CVE-2024-34060 - Arbitrary File Write and Remote Code Execution in IrisEVTXModule Before 1..
Published: June 2024
Severity: High
Components Affected: iris-evtx-module (used by iris-web web application)
Quick Summary
A critical security flaw existed in all versions of IrisEVTXModule
CVE-2024-30280 - Critical Out-of-Bounds Read in Acrobat Reader—How Attackers Could Execute Code with a Simple File
Adobe Acrobat Reader is one of the most widely used PDF viewers on the planet, but with popularity comes attention from attackers. In June 2024,
CVE-2024-4399 - Unauthenticated SSRF Attack via Parameter Validation Flaw – Technical Writeup & Exploit
In 2024, a severe vulnerability tagged as CVE-2024-4399 was uncovered in a popular web system. The core issue? The application does not validate a user-supplied
CVE-2024-29851 - How Veeam Backup Enterprise Manager Can Leak NTLM Hashes
*Published: June 2024*
Veeam Backup & Replication is a super popular backup solution for virtual environments and critical infrastructure. If you use Veeam, you probably
CVE-2024-25738 - Critical SSRF in VuFind Lets Hackers Gain Admin Access & RCE (Full Details & Exploit)
Published: June 2024
What is CVE-2024-25738?
A new and dangerous vulnerability has come to light: CVE-2024-25738 is a Server-Side Request Forgery (SSRF) in VuFind, an
Episode
00:00:00
00:00:00