Overview
- SmarterTools
- SmarterMail
Description
Statistics
- 3 Posts
- 5 Interactions
Fediverse
Overview
- parallax
- jsPDF
Description
Statistics
- 1 Post
- 4 Interactions
Fediverse
โ๏ธCVE-2025-68428: Critical Path Traversal in jsPDF
GitHub: https://github.com/12nio/CVE-2025-68428_PoC
CVSS: 9.2
CVE Published: January 5th, 2026
Exploit Published: January 8th, 2026
News source: https://www.bleepingcomputer.com/news/security/critical-jspdf-flaw-lets-hackers-steal-secrets-via-generated-pdfs/
Overview
- Airoha Technology Corp.
- AB156x, AB157x, AB158x, AB159x series, AB1627
Description
Statistics
- 1 Post
- 2 Interactions
Overview
Description
Statistics
- 1 Post
- 2 Interactions
Fediverse
โ ๏ธ If you are running Next.js, you need to see this.
The "React2Shell" vulnerability (CVE-2025-55182) is currently making waves, and for good reason. Unauthenticated RCE on default configurations is about as critical as it gets for modern web frameworks.
If you haven't audited your versions yet, do it now.
See the full technical breakdown: ๐ https://www.cvedatabase.com/cve/CVE-2025-55182
Overview
Description
Statistics
- 1 Post
- 1 Interaction
Overview
Description
Statistics
- 1 Post
- 1 Interaction
Fediverse
I'm not exactly sure why I'm doing this on a Sunday, and the hard work was done by others, but there you go; proposed fix for CVE-2026-0716. https://gitlab.gnome.org/GNOME/libsoup/-/merge_requests/494
Overview
Description
Statistics
- 1 Post
Fediverse
์์ฆ ์ค๋ ๋์ RSA-2048์ ํด๋ ํ๋ค๋ ์๋ฐ์ด ์์ด์ ๊ธ์ ์ฒ์๋ถํฐ ๋๊น์ง ์ ๋ ํ๋ค.
๊ทธ๋ฆฌ๊ณ ์ฝ๋ ์์ด ๊ฐ๋ ์ ์ผ๋ก ๊ฐ๋ฅํ์ง ๋ฐ์ ธ๋ด. ์ด ์ฌ๋์ ์ฃผ์ฅ์ ๋๋ฌด ์ค๊ตฌ๋๋ฐฉ์ด๋ผ ๊น๋ํ๊ฒ ํ์ค๋ก ์์ฝํ๋ฉด ์ด๋ ๋ค.
"d = | q - p | ์ d(๊ฑฐ๋ฆฌ)๊ฐ 0์ ์๋ ดํ ์๋ก RSA๊ฐ ๊นจ์ง ๊ฐ๋ฅ์ฑ์ด ๋์์ง๋ค."
๊ทธ๋ฆฌ๊ณ ์ด๊ฑด ์ผ์ถ ์ฌ์ค์ ๋ง์.
๊ฑฐ๋ฆฌ๊ฐ ๊ฐ๊น์์ง์๋ก Fermat's Factorization๋ฅผ ์ด์ฉํ ๊ณต๊ฒฉ์ด ๊ฐ๋ฅํด์ง๊ณ , ์ด์ ๊ด๋ จ๋ ๊ณต์ ์ทจ์ฝ์ CVE (์: CVE-2022-26320)๋ ์กด์ฌํ๋ค.
์ฐธ๊ณ ๋ก ์ด๋ ค์ด๊ฒ ์๋๋ผ ๊ณ ๋ฑ๊ณผ์ ๊ณฑ์ ๊ณต์ ์ค ํ๋๋ค.
RSA-2048์์๋ ์ฌ์ค์ ๋ถ๊ฐ๋ฅํ๊ณ , RSA-256 ์์ค์์ ๊ฐ๋ฅํ ์ ์๋ค. (RSA-2048์ ํน์ ์กฐ๊ฑด ๋ง์กฑ์ ๊ฐ๋ฅ)
RSA-2048์ ํ์๋ค๊ณ ์ฃผ์ฅํ์๋ ๋ถ์ด ์ฌ๋ฆฐ ์ฝ๋๋ฅผ ๋ดค์ ๋, ๊ทธ๋ฅ q๋ฅผ ์ ์ฅํด๋๊ณ n mod q ๋จน์ฌ์ 0์ด ๋๋์ง ํ์ธํ๊ณ p๋ฅผ ์ ๋ํ๋ ๊ฒ์.
๊ทธ๋ฅ ๋ต์ง๊ฐ์ง๊ณ ์ฅ๋์น๋๊ฑฐ๋ผ ์๊ฐํ๋ฉด ๋๋ค.
Overview
Description
Statistics
- 1 Post
Fediverse
๐ CVE-2026-0840 - High (8.8)
A security vulnerability has been detected in UTT ่ฟๅ 520W 1.7.7-180627. Affected by this vulnerability is the function strcpy of the file /goform/formConfigNoticeConfig. The manipulation of the argument timestart leads to buffer overflow. It i...
๐ https://www.thehackerwire.com/vulnerability/CVE-2026-0840/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
Description
Statistics
- 1 Post
Fediverse
๐ CVE-2026-0841 - High (8.8)
A vulnerability was detected in UTT ่ฟๅ 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /goform/formPictureUrl. The manipulation of the argument importpictureurl results in buffer overflow. It is possible to launch ...
๐ https://www.thehackerwire.com/vulnerability/CVE-2026-0841/
#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
Overview
- libsodium
- libsodium
Description
Statistics
- 1 Post