CVE-2025-27148 - How Gradle’s Native-Platform Temporary File Handling Led to Local Privilege Escalation Risk
---
Summary:
A recent vulnerability—CVE-2025-27148—impacts users of the Gradle build automation tool, specifically through its native-platform integration. Due to how temporary files were
CVE-2025-27142 - Critical Path Traversal and RCE Vulnerability in LocalSend (Pre-1.17.)
LocalSend is a popular, open-source application for secure, direct file and message transfers over local networks—no Internet required. It’s loved for its simplicity:
CVE-2025-27098 - Static File Path Traversal Vulnerability in GraphQL Mesh – Details, Exploit, and How to Fix
GraphQL Mesh is a powerful gateway and federation framework that gives you the flexibility to connect not just GraphQL subgraphs, but also REST APIs, gRPC
CVE-2025-27218 - Critical Remote Code Execution in Sitecore XM/XP 10.4 via Insecure Deserialization
Sitecore is a popular enterprise-grade content management system used by organizations worldwide. In March 2025, a serious vulnerability was identified in Sitecore Experience Manager (XM)
CVE-2025-21355 - How Missing Authentication in Microsoft Bing Puts Your Network at Risk
---
In June 2025, security researchers discovered a severe vulnerability in Microsoft Bing, tracked as CVE-2025-21355. This issue centers around missing authentication in a critical
Episode
00:00:00
00:00:00