CVE-2025-4427 - How Attackers Can Bypass API Authentication in Ivanti Endpoint Manager Mobile 12.5.. (and Older)
Ivanti Endpoint Manager Mobile (EPMM) is widely used by companies to manage devices and enforce security. But on June 4th, 2025, a major vulnerability was
CVE-2025-42999 - SAP NetWeaver Visual Composer Metadata Uploader – Untrusted Deserialization Vulnerability Explained
CVE-2025-42999 is a newly discovered vulnerability in SAP NetWeaver Visual Composer (VC). This vulnerability lets a user with upload permissions—sometimes even an internal or
CVE-2025-31258 - How a macOS Sandbox Escape Was Fixed in Sequoia 15.5
In early 2025, Apple patched a serious security vulnerability impacting the macOS operating system. Tracked as CVE-2025-31258, this bug could have allowed a malicious app
CVE-2025-22247 - Breaking Down VMware Tools’ Insecure File Handling Flaw (Exclusive Deep Dive & Exploit Details)
Earlier in 2025, a serious vulnerability labeled CVE-2025-22247 hit the security news cycle. It impacts the widely used VMware Tools, a staple for managing and
CVE-2025-29813 - Azure DevOps Identity Claim Spoofing – Exploiting Authentication Bypass by Assumed-Immutable Data
A major security flaw, CVE-2025-29813, has been discovered in Microsoft Azure DevOps, involving a vulnerability titled “Authentication Bypass by Assumed-Immutable Data.” In simple terms, this
Episode
00:00:00
00:00:00