Everything you care about in one place

Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.

Get Feeder

kb.cert.org

CERT Recently Published Vulnerability Notes

Get the latest updates from CERT Recently Published Vulnerability Notes directly as they happen.

Follow now 114 followers

Latest posts

Last updated about 1 month ago

VU#123336: Vulnerable WiFi Alliance example code found in Arcadyan FMIMG51AX000J

about 1 month ago

Overview A command injection vulnerability has been identified in the Wi-Fi Test...

VU#138043: A stack-based overflow vulnerability exists in the Microchip Advanced Software Framework (ASF) implementation of the tinydhcp server

2 months ago

Overview A stack-based overflow vulnerability exists in the tinydhcp server in the...

VU#455367: Insecure Platform Key (PK) used in UEFI system firmware signature

3 months ago

Overview A vulnerability in the user of hard-coded Platform Keys (PK) within...

VU#244112: Multiple SMTP services are susceptible to spoofing attacks due to insufficient enforcement

4 months ago

Overview Multiple hosted, outbound SMTP servers are vulnerable to email impersonation. This...

VU#312260: Use-after-free vulnerability in lighttpd version 1.4.50 and earlier

5 months ago

Overview A use-after-free vulnerability in lighttpd in versions 1.4.50 and earlier permits...

VU#456537: RADIUS protocol susceptible to forgery attacks.

5 months ago

Overview A vulnerability in the RADIUS protocol allows an attacker allows an...

VU#163057: BMC software fails to validate IPMI session.

7 months ago

Overview The Intelligent Platform Management Interface (IPMI) implementations in multiple manufacturer's Baseboard...

VU#253266: Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models

7 months ago

Overview Lambda Layers in third party TensorFlow-based Keras models allow attackers to...

VU#123335: Multiple Programming Languages Fail to Escape Arguments Properly in Microsoft Windows

8 months ago

Overview Various programming languages lack proper validation mechanisms for commands and in...

VU#155143: Linux kernel on Intel systems is susceptible to Spectre v2 attacks

8 months ago

Overview A new cross-privilege Spectre v2 vulnerability that impacts modern CPU architectures...

VU#421644: HTTP/2 CONTINUATION frames can be utilized for DoS attacks

8 months ago

Overview HTTP allows messages to include named fields in both header and...