CVE-2025-14524

When an OAuth2 bearer token is used for an HTTPS transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass on the bearer token to the new target host...

GHSA-GVQ6-HVVP-H34H

creationtimestamp| type| source ---|---|--- 2026-01-02 21:57:38+00:00| seen| Telegram/OYffpMdaBj2T2f8vD3Xr2N56biRnySAWVcO0fFYvIpjNs 2026-01-24 22:43:33+00:00| seen| https://gist.github.com/alon710/ba3e09576fab94743e09cd5958c53dc4...

CVE-2021-47725

creationtimestamp| type| source ---|---|--- 2026-01-01 21:02:56+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mbfbpekxaw22...

CVE-2025-15405

creationtimestamp| type| source ---|---|--- 2026-01-01 19:19:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbf3wdcpcd2o...

PT-2026-25380

Name of the Vulnerable Software and Affected Versions cpp-httplib versions prior to 0.37.2 Description cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. When a cpp-httplib client is configured with a proxy and set follow locationtrue, HTTPS redirects can silently...

PT-2026-34088

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26 Oracle GraalVM for JDK versions 17.0.18, 21.0.10 Oracle GraalVM Enterprise Edition version 21.3.17 Description An issue in the JSSE component allows an...

CVE-2025-68919

creationtimestamp| type| source ---|---|--- 2025-12-24 22:37:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mardasj2x22o...

CVE-2023-53975

creationtimestamp| type| source ---|---|--- 2025-12-23 07:55:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3manbjtprgz2v...

Evasion-Resilient Detection of DNS-Over-HTTPS Data Exfiltration: A Practical Evaluation and Toolkit

The purpose of this project is to assess how well defenders can detect DNS-over-HTTPS DoH file exfiltration, and which evasion strategies can be used by attackers. While providing a reproducible toolkit to generate, intercept and analyze DoH exfiltration, and comparing Machine Learning vs...

CVE-2025-14299

The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory allocation, causing the device to crash and...

CVE-2025-14300

The HTTPS service on Tapo C200 V3 exposes a connectAP interface without proper authentication. An unauthenticated attacker on the same local network segment can exploit this to modify the device’s Wi-Fi configuration, resulting in loss of connectivity and denial-of-service DoS...

CVE-2025-14299

The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory allocation, causing the device to crash and...

CVE-2025-14299

CVE-2025-14299 affects TP-LINK Tapo C200 V3’s HTTPS server. The flaw is improper validation of the Content-Length header, which can trigger an integer overflow and cause excessive memory allocation, leading to a denial of service. An unauthenticated attacker on the same local network can craft HT...

CVE-2025-14299 Improper Content-Length Validation in HTTPS Requests on Tapo C200

The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory allocation, causing the device to crash and...

CVE-2025-14299 Improper Content-Length Validation in HTTPS Requests on Tapo C200

The HTTPS server on Tapo C200 V3 does not properly validate the Content-Length header, which can lead to an integer overflow. An unauthenticated attacker on the same local network segment can send crafted HTTPS requests to trigger excessive memory allocation, causing the device to crash and...

PT-2025-52531

Name of the Vulnerable Software and Affected Versions Tapo C200 V3 affected versions not specified Description The device’s HTTPS server does not correctly validate the Content-Length header, leading to an integer overflow. An attacker on the same local network can send specially crafted HTTPS...

CVE-2025-34179

NetSupport Manager 14.12.0001 contains an unauthenticated SQL injection vulnerability in its Connectivity Server/Gateway HTTPS request handling. The server evaluates request URIs using an unsanitized SQLite query against the FileLinks table in gateway.db. By injecting SQL through the LinkName/URI...

How to Configure HTTP Proxy for Linux-based Veeam Components

Purpose This article documents how to configure HTTP and HTTPS Proxy settings for Linux-based components, including the Veeam Software Appliance and JeOS-deployed Veeam Infrastructure Appliances, in environments where a proxy must be used to access the internet. Note: For proxy configuration...

CVE-2025-65290

Aqara Hub devices including Camera Hub G3 4.1.90027, Hub M2 4.3.60027, and Hub M3 4.3.60025 fail to validate server certificates during HTTPS firmware downloads, allowing man-in-the-middle attackers to intercept firmware update traffic and potentially serve modified firmware files...

CVE-2025-26487

Server-Side Request Forgery SSRF vulnerability in Infinera MTC-9 version allows remote unauthenticated users to gain access to other network resources using HTTPS requests through the appliance used as a bridge...