X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 26/12/2024 13:00

CVE-2024-52046 Impacts Apache Mina

CVE-2024-52046 is a critical security vulnerability found in the Apache MINA library. This vulnerability is located within the ObjectSerializationDecoder component, which uses Java’s native serialization mechanisms to decode incoming serialized data. The core issue is the absence of robust security checks and validation during the deserialization process, allowing attackers to craft malicious serialized data that […]

Articles similaires

Sorry! Image not available at this time

MongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOs

securityaffairs.co - 31/12/2025 08:22

MongoBleed (CVE-2025-14847) lets attackers remotely leak memory from unpatched MongoDB servers using zlib compression, without authentication. A...

Sorry! Image not available at this time

MongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOs

securityaffairs.co - 31/12/2025 08:22

MongoBleed (CVE-2025-14847) lets attackers remotely leak memory from unpatched MongoDB servers using zlib compression, without authentication. A...

Sorry! Image not available at this time

Critical IBM API Connect Vulnerability Let Attackers Bypass Logins

itsecuritynews.info - 31/12/2025 14:31

A critical security alert regarding a severe vulnerability in the IBM API Connect platform that could allow remote attackers to bypass authentication...

Sorry! Image not available at this time

OWASP CRS Vulnerability Enables Charset Validation Bypass

itsecuritynews.info - 17:32

A newly disclosed vulnerability in the OWASP Core Rule Set (CRS) allows attackers to bypass charset validation in web application firewalls (WAFs),...

Sorry! Image not available at this time

LangChain core vulnerability allows prompt injection and data exposure

securityaffairs.co - 27/12/2025 18:20

A critical flaw in LangChain Core could allow attackers to steal sensitive secrets and manipulate LLM responses via prompt injection. LangChain Core...

Sorry! Image not available at this time

Malicious Manipulation of LLMs for Scalable Vulnerability Exploitation

itsecuritynews.info - 31/12/2025 17:32

A groundbreaking study from researchers at the University of Luxembourg reveals a critical security paradigm shift: large language models (LLMs) are...

Sorry! Image not available at this time

Malicious Manipulation of LLMs for Scalable Vulnerability Exploitation

itsecuritynews.info - 31/12/2025 17:32

A groundbreaking study from researchers at the University of Luxembourg reveals a critical security paradigm shift: large language models (LLMs) are...

Sorry! Image not available at this time

Ni8mare flaw gives unauthenticated control of n8n instances

securityaffairs.co - 07/Jan 21:15

A critical n8n flaw (CVE-2026-21858, CVSS 10.0), dubbed Ni8mare, allows unauthenticated attackers to fully take over vulnerable instances. Researchers...

Sorry! Image not available at this time

New Vulnerabilities in Bluetooth Headphones Let Hackers Hijack Connected Smartphone

itsecuritynews.info - 29/12/2025 16:03

Security researchers have disclosed critical vulnerabilities affecting widely used Bluetooth headphones and earbuds that could allow attackers to...

Sorry! Image not available at this time

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

itsecuritynews.info - 27/12/2025 08:31

A high-severity security flaw has been disclosed in MongoDB that could allow unauthenticated users to read uninitialized heap memory. The...

Les derniers communiqués