← Find more feeds

kb.cert.org

CERT Recently Published Vulnerability Notes

Get the latest updates from CERT Recently Published Vulnerability Notes directly as they happen.

Follow now 135 followers

Latest posts

Last updated 4 days ago

VU#862559: crypton-x509-validation Haskell libraries do not enforce X.509 NameConstraints

4 days ago

Overview A vulnerability has been discovered in the Haskell TLS software stack,...

Read full

VU#616257: Microsoft-signed UEFI shim bootloaders vulnerable to Secure Boot bypass

6 days ago

Overview Microsoft-signed UEFI bootloaders of the open-source shim project, primarily from version...

Read full

VU#595768: Securly Chrome Extension contains multiple weak encryption and access control vulnerabilities

12 days ago

Overview Version 3.0.7 of the Securly Chrome Extension contains multiple vulnerabilities involving...

Read full

VU#615987: Missing IPsec Integrity Protection for IMS SIP Signaling in Verizon VoLTE Deployments

13 days ago

Overview VoLTE deployments on Verizon’s IMS network have historically lacked IPsec-based integrity...

Read full

VU#265691: Appsmiths SQL Query autocomplete renderer contains a cross site scripting vulnerability

13 days ago

Overview A stored cross-site scripting (XSS) vulnerability has been discovered in Appsmith,...

Read full

VU#873170: Collibra Agent contains improper authentication and path traversal vulnerabilities

13 days ago

Overview The Collibra Platform Agent contains vulnerabilities that can be chained by...

Read full

VU#158530: PCTCore64.sys Windows kernel driver contains missing access control vulnerability

14 days ago

Overview The PCTCore64.sys Windows kernel driver from PC Tools Internet Security exposes...

Read full

VU#780781: Casdoor contains multiple authentication bypass and access management vulnerabilities

18 days ago

Overview Casdoor versions 2.362.0 and earlier contain several identity and access management...

Read full

VU#980487: Local privilege escalation in Linux Kernel (Dirty Frag)

26 days ago

Overview A privilege escalation vulnerability, nicknamed "Dirty Frag," has been discovered in...

Read full

VU#777338: SGLang contains two remote code execution and one path traversal vulnerability

28 days ago

Overview Three vulnerabilities have been discovered in the SGLang project, two enabling...

Read full

VU#471747: dnsmasq contains several vulnerabilities, including attacker DNS redirect, privilege escalation, and heap manipulation

about 1 month ago

Overview dnsmasq is affected by multiple memory safety and input validation vulnerabilities,...

Read full

VU#937808: Casdoor contains Arbitrary File Write vulnerability

about 1 month ago

Overview Casdoor contains an arbitrary file write vulnerability in the implementation of...

Read full

Or log in

Everything you care about in one place

CERT Recently Published Vulnerability Notes

Latest posts

VU#862559: crypton-x509-validation Haskell libraries do not enforce X.509 NameConstraints

VU#616257: Microsoft-signed UEFI shim bootloaders vulnerable to Secure Boot bypass

VU#595768: Securly Chrome Extension contains multiple weak encryption and access control vulnerabilities

VU#615987: Missing IPsec Integrity Protection for IMS SIP Signaling in Verizon VoLTE Deployments

VU#265691: Appsmiths SQL Query autocomplete renderer contains a cross site scripting vulnerability

VU#873170: Collibra Agent contains improper authentication and path traversal vulnerabilities

VU#158530: PCTCore64.sys Windows kernel driver contains missing access control vulnerability

VU#780781: Casdoor contains multiple authentication bypass and access management vulnerabilities

VU#980487: Local privilege escalation in Linux Kernel (Dirty Frag)

VU#777338: SGLang contains two remote code execution and one path traversal vulnerability

VU#471747: dnsmasq contains several vulnerabilities, including attacker DNS redirect, privilege escalation, and heap manipulation

VU#937808: Casdoor contains Arbitrary File Write vulnerability

Try Feeder for free