vulnerabilities Archives

Uncovering Vulnerabilities: Ingress NGINX Exposes Hacker Run Code in Kubernetes Without Login Lockouts

Posted byby
4 weeks ago
0 Comments

Research team of Wiz Security reports on a series of vulnerabilities, CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974 collectively referred to as IngressNightmare, a vulnerability of the popular Ingress NGINX Controller. Ingress...

Uncovering Vulnerabilities: A Deep Dive into the Ruby-SAML Library for Potential Hackers in Disguise.

Posted byby
1 month ago
0 Comments

The ruby-saml library is a vital component for implementing single sign-on services, but it has vulnerabilities due to errors in parsing XML values, allowing hackers to impersonate other users. This...

Revealed: Anthropic Disseminates Report on AI Vulnerabilities Succumbing to Answering Unsafe Questions Inappropriately If Repeatedly Posed in Relevant Contexts

Posted byby
1 year ago
0 Comments

Anthropic’s team of researchers at the AI company, owner of the chatbot Claude, have released a report on vulnerabilities in large language models (LLM) that can lead to inappropriate or...

Uncovering xz Library Compression Vulnerability in Secure Shell Reveals Developer Oversight

Posted byby
1 year ago
0 Comments

Andres Freund, a developer from Microsoft, reported on the code of the xz project, a widely popular compression program. However, the recent releases, version 5.6.0 and 5.6.1, exhibited strange behaviors....

GitHub Introduces AI Feature for Detecting and Fixing Security Vulnerabilities in Code

Posted byby
1 year ago
0 Comments

GitHub has introduced a new feature called Code scanning autofix, which is an AI that helps to quickly detect and fix vulnerabilities in code. Currently in public beta status, it...

CVE-2023-38545 Patch Released: Curl Unleashes Remedial Measures, Unmasking Vulnerabilities and Disrupting Server Connections via SOCKS5 Proxy

Posted byby
2 years ago
0 Comments

The curl project has released version 8.4.0, addressing vulnerabilities CVE-2023-38545 and CVE-2023-38546, as announced. The CVE-2023-38545 vulnerability represents a highly critical flaw that allows the execution of code on the...

Immediate Attention Required: WS_FTP Server Exposed to Severe Vulnerabilities Demanding Urgent Updates

Posted byby
2 years ago
0 Comments

Progress, the developer of WS_FTP, has issued a warning about multiple critical vulnerabilities in WS_FTP Server. Users are advised to update to versions 8.7.4 and 8.8.2 or reconfigure their settings...