X

Vous n'êtes pas connecté

Rubriques :

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 26/12/2024 13:00

CVE-2024-52046 Impacts Apache Mina

CVE-2024-52046 is a critical security vulnerability found in the Apache MINA library. This vulnerability is located within the ObjectSerializationDecoder component, which uses Java’s native serialization mechanisms to decode incoming serialized data. The core issue is the absence of robust security checks and validation during the deserialization process, allowing attackers to craft malicious serialized data that […]

Articles similaires

Sorry! Image not available at this time

Apache Log4j Flaw Enables Interception of Sensitive Logging Data

itsecuritynews.info - 19/12/2025 21:02

The Apache Software Foundation has released a critical security update for its widely used Log4j logging library. A newly discovered vulnerability,...

Sorry! Image not available at this time

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

itsecuritynews.info - 26/12/2025 06:03

A critical security vulnerability in LangChain, one of the world’s most widely deployed AI frameworks, enables attackers to extract environment...

Sorry! Image not available at this time

Critical LangChain Vulnerability Allows Attackers to Steal Sensitive Secrets

itsecuritynews.info - 26/12/2025 06:03

A critical security vulnerability in LangChain, one of the world’s most widely deployed AI frameworks, enables attackers to extract environment...

Sorry! Image not available at this time

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

itsecuritynews.info - 26/12/2025 04:02

A critical vulnerability in LangChain’s core library (CVE-2025-68664) allows attackers to exfiltrate sensitive environment variables and potentially...

Sorry! Image not available at this time

Critical Langchain Vulnerability Let attackers Exfiltrate Sensitive Secrets from AI systems

itsecuritynews.info - 26/12/2025 04:02

A critical vulnerability in LangChain’s core library (CVE-2025-68664) allows attackers to exfiltrate sensitive environment variables and potentially...

Sorry! Image not available at this time

Hackers Leverage Gladinet Triofox 0-Day Vulnerability to Run Malicious Code

itsecuritynews.info - 19/12/2025 21:02

A critical remote code execution vulnerability in Gladinet Triofox is now under active exploitation by threat actors, and security researchers have...

Sorry! Image not available at this time

Critical MongoDB Flaw Leaks Sensitive Data Through zlib Compression

itsecuritynews.info - 24/12/2025 06:02

MongoDB has disclosed a critical security vulnerability tracked as CVE-2025-14847 that could allow attackers to extract uninitialized heap memory from...

Sorry! Image not available at this time

Critical MongoDB Flaw Leaks Sensitive Data Through zlib Compression

itsecuritynews.info - 24/12/2025 06:02

MongoDB has disclosed a critical security vulnerability tracked as CVE-2025-14847 that could allow attackers to extract uninitialized heap memory from...

Sorry! Image not available at this time

MongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOs

securityaffairs.co - 08:22

MongoBleed (CVE-2025-14847) lets attackers remotely leak memory from unpatched MongoDB servers using zlib compression, without authentication. A...

Sorry! Image not available at this time

MongoBleed (CVE-2025-14847): the US, China, and the EU are among the top exploited GEOs

securityaffairs.co - 08:22

MongoBleed (CVE-2025-14847) lets attackers remotely leak memory from unpatched MongoDB servers using zlib compression, without authentication. A...

Les derniers communiqués