WebSocket - CVE CyberSecurity Database News

Mar 21, 2025 WebSocket

CVE-2025-30157: Envoy ext_proc HTTP Filter Local Reply Leads to Envoy Crash

Envoy is a popular open-source, cloud-native high-performance edge/middle/service proxy designed for modern application architectures. It provides several advanced features, such as load balancing,

Jan 20, 2025 Exploit WebSocket

CVE-2025-24010: Vite JavaScript Framework's CORS and WebSocket Vulnerability Allows Arbitrary Requests and Information Disclosure

The Vite JavaScript frontend tooling framework recently faced a significant security vulnerability, namely CVE-2025-24010, which allowed arbitrary websites to send requests to the Vite'

Jan 14, 2025 Exploit WebSocket

CVE-2024-55591: Authentication Bypass Vulnerability in FortiOS and FortiProxy Leads to Super-Admin Privileges

A critical security vulnerability has recently been discovered, dubbed CVE-2024-55591, that affects FortiOS version 7.. through 7..16 and FortiProxy version 7.. through 7..19

Dec 9, 2024 API Exploit GraphQL WebSocket SQL

CVE-2024-54151 - Unauthenticated Access to Directus APIs with Full Admin Privileges

Directus is a widely used real-time API and App dashboard designed to facilitate the management of SQL database content. A critical security vulnerability, identified as

CVE-2024-52318: Understanding the Incorrect Object Recycling and Reuse Vulnerability in Apache Tomcat and How to Keep Your System Secure

Nov 18, 2024 Exploit WebSocket Java Apache

CVE-2024-52318: Understanding the Incorrect Object Recycling and Reuse Vulnerability in Apache Tomcat and How to Keep Your System Secure

A new vulnerability, registered as CVE-2024-52318, has been discovered affecting a series of recent versions of the widely-used Apache Tomcat web server. In this article,