CVE-2024-5318: Unauthorized Access to GitLab Private Project Dependency Lists via Job Artifacts Exploit
A vulnerability has been discovered in GitLab Community Edition (CE) / Enterprise Edition (EE), affecting all versions starting from 11.11 prior to 16.10.6,
CVE-2024-5291: D-Link DIR-215 GetDeviceSettings Target Command Injection Remote Code Execution Vulnerability
A critical vulnerability has been identified in D-Link DIR-215 routers, which allows network-adjacent attackers to execute arbitrary code on affected installations without requiring authentication. This
CVE-2024-5168: Bypassing Authentication and Exploiting Improper Access Control in Prodys' Quantum Audio Codec v2.3.4t and Below
The Common Vulnerabilities and Exposures project, or CVE, recently disclosed an improper access control vulnerability in Prodys' Quantum Audio codec that affects versions 2.
CVE-2024-28188: Jupyter Scheduler Vulnerability - Protect Your User's Conda Environments
An important security vulnerability (CVE-2024-28188) has been discovered in Jupyter Scheduler, a collection of extensions that allow users to schedule programming jobs to run now
CVE-2024-26139: Gaining Administrative Privileges in OpenCTI via Profile Edit Functionality: A Detailed Exploit
OpenCTI is a powerful and popular open-source platform that allows organizations to manage their cyber threat intelligence knowledge and observables. However, security concerns sometimes arise
Episode
00:00:00
00:00:00