CVE-2024-5257 - Developer Users with `admin_compliance_framework` Custom Role Can Modify Group Namespace URLs in GitLab CE/EE (17. - 17..4, 17.1 - 17.1.2)
An issue with GitLab CE/EE (Community Edition/Enterprise Edition) has been identified where users with certain permissions can perform unauthorized operations. This vulnerability has
CVE-2024-5178 - ServiceNow Sensitive File Read Vulnerability: Patches and Hotfixes Released to Address Critical Security Issue
CVE-2024-5178 is a severe vulnerability that impacts the ServiceNow Washington DC, Vancouver, and Utah Now Platform releases. The vulnerability could potentially allow an administrative user
CVE-2024-4879 - ServiceNow's Input Validation Vulnerability in Vancouver and Washington DC Now Platform Releases
ServiceNow, an enterprise cloud platform provider, has recently addressed an input validation vulnerability, identified as CVE-2024-4879, which potentially allowed unauthenticated users to perform remote code
CVE-2024-22018: Vulnerability Identified in Node.js with Inadequate Permission Model Affecting fs.lstat API
A security vulnerability, tracked as CVE-2024-22018, has been identified in Node.js, specifically affecting users who have adopted the experimental permission model while using the
CVE-2024-21417: Windows Text Services Framework Elevation of Privilege Vulnerability – Details, Exploit, and Mitigation
The vulnerability dubbed as CVE-2024-21417 affects the Windows Text Services Framework (TSF), an integral part of the Windows operating system. This security flaw can lead
Episode
00:00:00
00:00:00