EUVD-2025-34075

CommandKit has incorrect command name exposure in context object for message command aliases...

Kotlin DSLs in the world of Springdom

Kotlin is a beautiful language that makes it trivial to take old Java libraries and make them much more concise, just by virtue of the Kotlin syntax itself. It shines, however, when you write DSLs. Here's some inside baseball for you: the Spring teams do their level-headed best to be cohesive, to...

Session fixation

Amazon Web Services AWS FreeRTOS through 1.3.1 allows remote attackers to execute arbitrary code because of mbedTLS context object corruption in prvSetupConnection and GGDSecureConnectConnect in AWS TLS connectivity modules...

CVE-2018-16528

Amazon Web Services AWS FreeRTOS through 1.3.1 allows remote attackers to execute arbitrary code because of mbedTLS context object corruption in prvSetupConnection and GGDSecureConnectConnect in AWS TLS connectivity modules...

CVE-2018-16528

Amazon Web Services AWS FreeRTOS through 1.3.1 allows remote attackers to execute arbitrary code because of mbedTLS context object corruption in prvSetupConnection and GGDSecureConnectConnect in AWS TLS connectivity modules...

Buffer overflow

Mozilla Firefox 1.5.0.2, when designMode is enabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain Javascript that is not properly handled by the contentWindow.focus method in an iframe, which causes a reference to a deleted controller contex...