CVE-2018-17453: Uncovering the GitLab Vulnerability and Understanding its Exploit
CVE-2018-17453 is a security vulnerability that affected GitLab Community and Enterprise Editions in versions prior to 11.1.7, 11.2.x before 11.2.
CVE-2023-29193: SpiceDB's gRPC API Pre-shared Key Exposure via Metrics Service Endpoint
SpiceDB is an open-source, Google Zanzibar-inspired, database system for creating and managing security-critical application permissions. It is widely used and has recently come under scrutiny
CVE-2022-29224: Envoy Proxy Vulnerability Involving Segmentation Fault in GrpcHealthCheckerImpl
Envoy is a popular and widely used cloud-native high-performance proxy designed to handle large-scale, dynamic service meshes efficiently. However, recently, a security flaw has been
Episode
00:00:00
00:00:00