|
You are here |
www.thezdi.com | ||
| | | | |
www.imperva.com
|
|
| | | | | Recently, a critical vulnerability in the widely used Apache OFBiz framework was disclosed, designated CVE-2024-45195. This vulnerability allows for unauthenticated remote code execution (RCE), making it an especially dangerous flaw for organizations using OFBiz in their business operations. An attacker without valid credentials can exploit missing view authorization checks in the web application, bypassing previous [...] | |
| | | | |
www.zerodayinitiative.com
|
|
| | | | | [AI summary] A vulnerability in NVIDIA Transformers4Rec allows remote code execution via deserialization of untrusted data, requiring user interaction to exploit. | |
| | | | |
swordbytes.com
|
|
| | | | | SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf's Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the "overwolfstore://" URL handler. This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf's Client Application. | |
| | | | |
machevalia.blog
|
|
| | | |||