CVE-2024-52046 Impacts Apache Mina

CVE-2024-52046 is a critical security vulnerability found in the Apache MINA library. This vulnerability is located within the ObjectSerializationDecoder component, which uses Java’s native serialization mechanisms to decode incoming serialized data. The core issue is the absence of robust security checks and validation during the deserialization process, allowing attackers to craft malicious serialized data that […]

Apache Log4j Flaw Enables Interception of Sensitive Logging Data

itsecuritynews.info - 19/Dec 21:02

The Apache Software Foundation has released a critical security update for its widely used Log4j logging library. A newly discovered vulnerability,...

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

itsecuritynews.info - 26/Dec 06:03

A critical security vulnerability in LangChain, one of the world’s most widely deployed AI frameworks, enables attackers to extract environment...

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

itsecuritynews.info - 26/Dec 06:03

A critical security vulnerability in LangChain, one of the world’s most widely deployed AI frameworks, enables attackers to extract environment...

Critical ScreenConnect Vulnerability Let Attackers Expose Sensitive Configuration Data

itsecuritynews.info - 16/Dec 12:32

ConnectWise has issued a security update for ScreenConnect™ to address a critical vulnerability that could enable attackers to expose sensitive...

Critical ScreenConnect Vulnerability Let Attackers Expose Sensitive Configuration Data

itsecuritynews.info - 16/Dec 12:32

ConnectWise has issued a security update for ScreenConnect™ to address a critical vulnerability that could enable attackers to expose sensitive...

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

itsecuritynews.info - 26/Dec 04:02

A critical vulnerability in LangChain’s core library (CVE-2025-68664) allows attackers to exfiltrate sensitive environment variables and potentially...

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

itsecuritynews.info - 26/Dec 04:02

A critical vulnerability in LangChain’s core library (CVE-2025-68664) allows attackers to exfiltrate sensitive environment variables and potentially...

Hackers Leverage Gladinet Triofox 0-Day Vulnerability to Run Malicious Code

itsecuritynews.info - 19/Dec 21:02

A critical remote code execution vulnerability in Gladinet Triofox is now under active exploitation by threat actors, and security researchers have...

Critical MongoDB Flaw Leaks Sensitive Data Through zlib Compression

itsecuritynews.info - 24/Dec 06:02

MongoDB has disclosed a critical security vulnerability tracked as CVE-2025-14847 that could allow attackers to extract uninitialized heap memory from...

Critical MongoDB Flaw Leaks Sensitive Data Through zlib Compression

itsecuritynews.info - 24/Dec 06:02

MongoDB has disclosed a critical security vulnerability tracked as CVE-2025-14847 that could allow attackers to extract uninitialized heap memory from...

Rubriques :

CVE-2024-52046 Impacts Apache Mina

Articles similaires

Apache Log4j Flaw Enables Interception of Sensitive Logging Data

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

Critical ScreenConnect Vulnerability Let Attackers Expose Sensitive Configuration Data

Critical ScreenConnect Vulnerability Let Attackers Expose Sensitive Configuration Data

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

Hackers Leverage Gladinet Triofox 0-Day Vulnerability to Run Malicious Code

Critical MongoDB Flaw Leaks Sensitive Data Through zlib Compression

Critical MongoDB Flaw Leaks Sensitive Data Through zlib Compression

Les derniers communiqués