Aggregator

CVE-2024-52316 | Apache Tomcat up to 9.0.95/10.1.30/11.0.0-M26 ServerAuthContext error condition (EUVD-2024-3331 / Nessus ID 211506)

Vuldb Updates
3 months 2 weeks ago
A vulnerability classified as critical was found in Apache Tomcat up to 9.0.95/10.1.30/11.0.0-M26. This issue affects some unknown processing of the component ServerAuthContext Component. The manipulation results in unchecked error condition. This vulnerability is known as CVE-2024-52316. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2024-38286 | Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20 TLS Handshake resource consumption (EUVD-2024-3211 / Nessus ID 208063)

Vuldb Updates
3 months 2 weeks ago
A vulnerability categorized as critical has been discovered in Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20. This affects an unknown function of the component TLS Handshake Handler. The manipulation results in resource consumption. This vulnerability is identified as CVE-2024-38286. The attack can be executed remotely. There is not any exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2024-24549 | Apache Tomcat up to 8.5.98/9.0.85/10.1.18/11.0.0-M16 HTTP/2 Request denial of service (DLA 3779-1 / Nessus ID 209246)

Vuldb Updates
3 months 2 weeks ago
A vulnerability has been found in Apache Tomcat up to 8.5.98/9.0.85/10.1.18/11.0.0-M16 and classified as problematic. This vulnerability affects unknown code of the component HTTP2 Request Handler. The manipulation leads to denial of service. This vulnerability is documented as CVE-2024-24549. The attack can be initiated remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2024-34750 | Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20 HTTP/2 Stream exceptional condition (Nessus ID 212124 / WID-SEC-2025-0143)

Vuldb Updates
3 months 2 weeks ago
A vulnerability identified as problematic has been detected in Apache Tomcat up to 9.0.89/10.1.24/11.0.0-M20. The impacted element is an unknown function of the component HTTP2 Stream Handler. Performing manipulation results in handling of exceptional conditions. This vulnerability is identified as CVE-2024-34750. The attack can be initiated remotely. There is not any exploit available. You should upgrade the affected component.
vuldb.com

CVE-2025-40065 | Linux Kernel up to 6.17.2 KVM privilege escalation (Nessus ID 271877)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.17.2. It has been classified as critical. This impacts an unknown function of the component KVM. The manipulation leads to privilege escalation. This vulnerability is documented as CVE-2025-40065. The attack requires being on the local network. There is not any exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-40070 | Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2 drivers/base/core.c pps_register_cdev use after free (Nessus ID 271878)

Vuldb Updates
3 months 2 weeks ago
A vulnerability described as critical has been identified in Linux Kernel up to 5.15.194/6.1.155/6.6.111/6.12.52/6.17.2. Affected is the function pps_register_cdev of the file drivers/base/core.c. Such manipulation leads to use after free. This vulnerability is referenced as CVE-2025-40070. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is recommended.
vuldb.com

How Quantum Computing Will Transform Data Security, AI, and Cloud Systems

Security Boulevard
3 months 2 weeks ago

Quantum computing is set to redefine data security, AI, and cloud infrastructure. This in-depth research explores how post-quantum cryptography, quantum AI acceleration, and hybrid quantum-cloud systems will reshape technology by 2035—and what developers can do to prepare.

The post How Quantum Computing Will Transform Data Security, AI, and Cloud Systems appeared first on Security Boulevard.

SSOJet - Enterprise SSO & Identity Solutions

Hackers Allegedly Leak HSBC USA Customer and Financial Information

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
3 months 2 weeks ago

A threat actor has claimed responsibility for breaching HSBC USA, the American division of the global investment bank and financial services holding company. The cybercriminal posted an extensive database for sale on underground forums, alleging it contains fresh and comprehensive customer data stolen from the financial institution. Massive Collection of Sensitive Customer Data According to […]

The post Hackers Allegedly Leak HSBC USA Customer and Financial Information appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

Akira

Dark Feed IO
3 months 2 weeks ago

You must login to view this content

cohenido

CVE-2023-25231 | Tenda W30E 1.0.1.25(633) fromRouteStatic entrys/mitInterface buffer overflow (EUVD-2023-29194)

Vuldb Updates
3 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Tenda W30E 1.0.1.25(633). This issue affects the function fromRouteStatic. The manipulation of the argument entrys/mitInterface results in buffer overflow. This vulnerability is cataloged as CVE-2023-25231. The attack must originate from the local network. There is no exploit available.
vuldb.com

CVE-2023-25221 | Libde265 1.0.10 motion.cc derive_spatial_luma_vector_prediction heap-based overflow (Issue 388 / EUVD-2023-29184)

Vuldb Updates
3 months 2 weeks ago
A vulnerability was found in Libde265 1.0.10. It has been classified as critical. Affected by this vulnerability is the function derive_spatial_luma_vector_prediction of the file motion.cc. The manipulation leads to heap-based buffer overflow. This vulnerability is documented as CVE-2023-25221. The attack requires being on the local network. There is not any exploit available.
vuldb.com

Akira

Dark Feed IO
3 months 2 weeks ago

You must login to view this content

cohenido

Qilin

Dark Feed IO
3 months 2 weeks ago

You must login to view this content

cohenido

Qilin

Dark Feed IO
3 months 2 weeks ago

You must login to view this content

cohenido

Managed ad