Everything you care about in one place
Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.
Get Feederkb.cert.org
CERT Recently Published Vulnerability Notes
Get the latest updates from CERT Recently Published Vulnerability Notes directly as they happen.
Follow now 111 followers
Latest posts
Last updated about 11 hours ago
VU#138043: A stack-based overflow vulnerability exists in the Microchip Advanced Software Framework (ASF) implementation of the tinydhcp server
about 11 hours ago
Overview A stack-based overflow vulnerability exists in the tinydhcp server in the...
VU#455367: Insecure Platform Key (PK) used in UEFI system firmware signature
20 days ago
Overview A vulnerability in the user of hard-coded Platform Keys (PK) within...
VU#244112: Multiple SMTP services are susceptible to spoofing attacks due to insufficient enforcement
about 2 months ago
Overview Multiple hosted, outbound SMTP servers are vulnerable to email impersonation. This...
VU#312260: Use-after-free vulnerability in lighttpd version 1.4.50 and earlier
2 months ago
Overview A use-after-free vulnerability in lighttpd in versions 1.4.50 and earlier permits...
VU#456537: RADIUS protocol susceptible to forgery attacks.
2 months ago
Overview A vulnerability in the RADIUS protocol allows an attacker allows an...
VU#163057: BMC software fails to validate IPMI session.
5 months ago
Overview The Intelligent Platform Management Interface (IPMI) implementations in multiple manufacturer's Baseboard...
VU#238194: R Programming Language implementations are vulnerable to arbitrary code execution during deserialization of .rds and .rdx files
5 months ago
Overview A vulnerability in the R language that allows for arbitrary code...
VU#253266: Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models
5 months ago
Overview Lambda Layers in third party TensorFlow-based Keras models allow attackers to...
VU#123335: Multiple Programming Languages Fail to Escape Arguments Properly in Microsoft Windows
5 months ago
Overview Various programming languages lack proper validation mechanisms for commands and in...
VU#155143: Linux kernel on Intel systems is susceptible to Spectre v2 attacks
5 months ago
Overview A new cross-privilege Spectre v2 vulnerability that impacts modern CPU architectures...
VU#421644: HTTP/2 CONTINUATION frames can be utilized for DoS attacks
6 months ago
Overview HTTP allows messages to include named fields in both header and...
VU#417980: UDP-based, application-layer protocol implementations are vulnerable to network loops
6 months ago
Overview A novel traffic-loop vulnerability has been identified against certain implementations of...