WebSocket - CVE CyberSecurity Database News

Jan 20, 2025 Exploit WebSocket

CVE-2025-24010: Vite JavaScript Framework's CORS and WebSocket Vulnerability Allows Arbitrary Requests and Information Disclosure

The Vite JavaScript frontend tooling framework recently faced a significant security vulnerability, namely CVE-2025-24010, which allowed arbitrary websites to send requests to the Vite'

Jan 14, 2025 Exploit WebSocket

CVE-2024-55591: Authentication Bypass Vulnerability in FortiOS and FortiProxy Leads to Super-Admin Privileges

A critical security vulnerability has recently been discovered, dubbed CVE-2024-55591, that affects FortiOS version 7.. through 7..16 and FortiProxy version 7.. through 7..19

Dec 9, 2024 API Exploit GraphQL WebSocket SQL

CVE-2024-54151 - Unauthenticated Access to Directus APIs with Full Admin Privileges

Directus is a widely used real-time API and App dashboard designed to facilitate the management of SQL database content. A critical security vulnerability, identified as

CVE-2024-52318: Understanding the Incorrect Object Recycling and Reuse Vulnerability in Apache Tomcat and How to Keep Your System Secure

Nov 18, 2024 Exploit WebSocket Java Apache

CVE-2024-52318: Understanding the Incorrect Object Recycling and Reuse Vulnerability in Apache Tomcat and How to Keep Your System Secure

A new vulnerability, registered as CVE-2024-52318, has been discovered affecting a series of recent versions of the widely-used Apache Tomcat web server. In this article,

CVE-2024-52316: Unchecked Error Condition Vulnerability in Apache Tomcat Allowing User Authentication Bypass

Nov 18, 2024 API WebSocket Java Apache

CVE-2024-52316: Unchecked Error Condition Vulnerability in Apache Tomcat Allowing User Authentication Bypass

A vulnerability has been discovered in Apache Tomcat, identified as CVE-2024-52316, that could potentially allow users to bypass the authentication process when a custom Jakarta