CVE-2023-36673 - Cracking Avira Phantom VPN’s “ServerIP” - How Plaintext Traffic Leaks Can Betray You
Virtual Private Networks (VPNs) are supposed to keep your network traffic safe from snoopers and attackers. But a bug in Avira Phantom VPN for macOS
CVE-2023-34237 - Remote Code Execution in SABnzbd via Notification Script Parameters
SABnzbd is a popular open source tool for automated downloading from Usenet. As convenient as it is, it recently made news because of a serious
CVE-2023-33538 - Command Injection in TP-Link TL-WR940N, TL-WR841N, and TL-WR740N Routers – Details, Code, and How Hackers Exploit It
If you own or manage a TP-Link home router, you might be at risk from a recently discovered security vulnerability: CVE-2023-33538. This long-read post breaks
CVE-2023-1945 - How a Safe Browsing API Glitch Could Crash (and Exploit) Firefox ESR and Thunderbird
---
In April 2023, Mozilla quietly patched a significant vulnerability now tracked as CVE-2023-1945. This bug centered around how browser applications handled data from the
CVE-2023-31484 - How a Simple TLS Overlook Put Perl's CPAN.pm at Risk
Summary:
CVE-2023-31484 is a vulnerability in CPAN.pm—the core Perl module for distribution—where versions before 2.35 did not verify TLS certificates when
Episode
00:00:00
00:00:00