CVE-2024-30171 - Timing-Based Leakage in Bouncy Castle Java TLS API and JSSE Provider: Exploit Details and Mitigation Recommendations
A potential security vulnerability, CVE-2024-30171, has been discovered in the Bouncy Castle Java TLS API and JSSE Provider versions before 1.78. This vulnerability is
CVE-2024-29857 - An issue affecting Bouncy Castle causes excessive CPU consumption in ECCurve.java and ECCurve.cs during the evaluation of curve parameters
An important vulnerability was recently discovered in ECCurve.java and ECCurve.cs, which are parts of Bouncy Castle libraries. This vulnerability affects different versions of
CVE-2024-32113: Path Traversal Vulnerability in Apache OFBiz (before 18.12.13)
A critical path traversal vulnerability has been discovered in Apache OFBiz, an open-source Enterprise Resource Planning (ERP) system widely used by businesses across the globe.
CVE-2024-23713 - A Deep Dive into the NotificationManagerService Vulnerability: Understanding the Exploit and its Impact
In this blog post, we will delve into a recently discovered Android vulnerability, CVE-2024-23713, which affects the migrateNotificationFilter function found in NotificationManagerService.java. We will
CVE-2024-34447 - Bouncy Castle Hostname Verification Vulnerability and Mitigation
The Bouncy Castle Java Cryptography APIs are a popular library for adding cryptography functions to Java applications. Recently, a vulnerability was discovered (identified as CVE-2024-34447)
Episode
00:00:00
00:00:00