RedPacket Security - InfoSec News & Tutorials

CVE Alert: CVE-2025-2786

April 4, 2025

Vulnerability Summary: CVE-2025-2786 A flaw was found in Tempo Operator, where it creates a ServiceAccount, ClusterRole, and ClusterRoleBinding when a...

CVE Alert: CVE-2025-2005

April 4, 2025

Vulnerability Summary: CVE-2025-2005 The Front End Users plugin for WordPress is vulnerable to arbitrary file uploads due to missing file...

CVE Alert: CVE-2025-2842

April 4, 2025

Vulnerability Summary: CVE-2025-2842 A flaw was found in the Tempo Operator. When the Jaeger UI Monitor Tab functionality is enabled...

CVE Alert: CVE-2025-3098

April 4, 2025

Vulnerability Summary: CVE-2025-3098 The Video Url plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'id' parameter in...

CVE Alert: CVE-2025-27556

April 3, 2025

Vulnerability Summary: CVE-2025-27556 An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normalization is...

CVE Alert: CVE-2025-30090

April 3, 2025

Vulnerability Summary: CVE-2025-30090 mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads...

CVE Alert: CVE-2024-50595

April 3, 2025

Vulnerability Summary: CVE-2024-50595 An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A...

CVE Alert: CVE-2024-50594

April 3, 2025

Vulnerability Summary: CVE-2024-50594 An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A...

CVE Alert: CVE-2024-50385

April 3, 2025

Vulnerability Summary: CVE-2024-50385 A denial of service vulnerability exists in the NetX Component HTTP server functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0....

CVE Alert: CVE-2024-50596

April 3, 2025

Vulnerability Summary: CVE-2024-50596 An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A...

CVE Alert: CVE-2024-45064

April 3, 2025

Vulnerability Summary: CVE-2024-45064 A buffer overflow vulnerability exists in the FileX Internal RAM interface functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A...

CVE Alert: CVE-2024-50597

April 3, 2025

Vulnerability Summary: CVE-2024-50597 An integer underflow vulnerability exists in the HTTP server PUT request functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0. A...

CVE Alert: CVE-2024-50384

April 3, 2025

Vulnerability Summary: CVE-2024-50384 A denial of service vulnerability exists in the NetX Component HTTP server functionality of STMicroelectronics X-CUBE-AZRTOS-WL 2.0.0....

CVE Alert: CVE-2024-25051

April 3, 2025

Vulnerability Summary: CVE-2024-25051 IBM Jazz Reporting Service 7.0.2 and 7.0.3 does not invalidate session after logout which could allow an...

CVE Alert: CVE-2025-31720

April 3, 2025

Vulnerability Summary: CVE-2025-31720 A missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers with Computer/Create...

CVE Alert: CVE-2024-56341

April 3, 2025

Vulnerability Summary: CVE-2024-56341 IBM Content Navigator 3.0.11, 3.0.15, and 3.1.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated...

CVE Alert: CVE-2025-31721

April 3, 2025

Vulnerability Summary: CVE-2025-31721 A missing permission check in Jenkins 2.503 and earlier, LTS 2.492.2 and earlier allows attackers with Computer/Create...

CVE Alert: CVE-2025-31723

April 3, 2025

Vulnerability Summary: CVE-2025-31723 A cross-site request forgery (CSRF) vulnerability in Jenkins Simple Queue Plugin 1.4.6 and earlier allows attackers to...

CVE Alert: CVE-2025-31722

April 3, 2025

Vulnerability Summary: CVE-2025-31722 In Jenkins Templating Engine Plugin 2.5.3 and earlier, libraries defined in folders are not subject to sandbox...

CVE Alert: CVE-2024-56475

April 3, 2025

Vulnerability Summary: CVE-2024-56475 IBM TXSeries for Multiplatforms 9.1 and 11.1 is vulnerable to cross-site scripting. This vulnerability allows an authenticated...

CVE Alert: CVE-2024-56476

April 3, 2025

Vulnerability Summary: CVE-2024-56476 IBM TXSeries for Multiplatforms 9.1 and 11.1 could allow an attacker to enumerate usernames due to an...

CVE Alert: CVE-2024-36336

April 3, 2025

Vulnerability Summary: CVE-2024-36336 Integer overflow within the AMD NPU Driver could allow a local attacker to write out of bounds,...

CVE Alert: CVE-2024-56474

April 3, 2025

Vulnerability Summary: CVE-2024-56474 IBM TXSeries for Multiplatforms 9.1 and 11.1 is vulnerable to cross-site request forgery which could allow an...

CVE Alert: CVE-2025-0154

April 3, 2025

Vulnerability Summary: CVE-2025-0154 IBM TXSeries for Multiplatforms 9.1 and 11.1 could disclose sensitive information to a remote attacker due to...

Main Story

Editor’s Picks

Trending Story

Featured Story

You may have missed