HTTP/2

Millions at Risk: Apache HTTP Server Fixes Critical Remote Code Execution Flaw

• Vulnerability Report

Millions at Risk: Apache HTTP Server Fixes Critical Remote Code Execution Flaw

Do Son May 5, 2026 0

The Apache HTTP Server Project, the long-standing standard for secure and extensible web services on UNIX and...

Read More Read more about Millions at Risk: Apache HTTP Server Fixes Critical Remote Code Execution Flaw

Node.js Issues Security Updates: High-Severity DoS and Permission Bypasses Patched

• Vulnerability Report

Node.js Issues Security Updates: High-Severity DoS and Permission Bypasses Patched

Do Son March 25, 2026 0

The Node.js project has released a critical sweep of security updates across its 20.x, 22.x, 24.x, and...

Read More Read more about Node.js Issues Security Updates: High-Severity DoS and Permission Bypasses Patched

One Character to Rule Them All: How a Missing Slash Bypasses gRPC-Go Security (CVE-2026-33186)

• Vulnerability Report

One Character to Rule Them All: How a Missing Slash Bypasses gRPC-Go Security (CVE-2026-33186)

Do Son March 23, 2026 0

A significant security flaw has been identified in gRPC-Go, the high-performance Go implementation of the gRPC framework....

Read More Read more about One Character to Rule Them All: How a Missing Slash Bypasses gRPC-Go Security (CVE-2026-33186)

Critical Fix: Microsoft Rushes Patch for Windows 11 Localhost Bug

• Windows

Critical Fix: Microsoft Rushes Patch for Windows 11 Localhost Bug

Do Son October 21, 2025 0

Last week, Microsoft’s latest Windows 11 cumulative update had inadvertently broken localhost authentication, preventing countless developers from...

Read More Read more about Critical Fix: Microsoft Rushes Patch for Windows 11 Localhost Bug

MadeYouReset: New HTTP/2 Flaw Threatens to Cripple Servers with DDoS Attacks

• Vulnerability Report

MadeYouReset: New HTTP/2 Flaw Threatens to Cripple Servers with DDoS Attacks

Do Son August 15, 2025 0

CERT/CC has issued a vulnerability note warning about a newly discovered flaw in multiple HTTP/2 implementations that...

Read More Read more about MadeYouReset: New HTTP/2 Flaw Threatens to Cripple Servers with DDoS Attacks

Apache Tomcat Patches Trio of Denial-of-Service Flaws

• Vulnerability

Apache Tomcat Patches Trio of Denial-of-Service Flaws

Do Son July 9, 2025 0

The Apache Software Foundation has released critical updates for Apache Tomcat 9, addressing three newly disclosed denial-of-service...

Read More Read more about Apache Tomcat Patches Trio of Denial-of-Service Flaws

Fundamental Web Security Broken: New Attacks Bypass Same-Origin Policy via HTTP/2 & SXG

• Vulnerability

Fundamental Web Security Broken: New Attacks Bypass Same-Origin Policy via HTTP/2 & SXG

Do Son May 27, 2025 0

In a revelation for web security, researchers from Tsinghua University have exposed two novel, off-path attacks —...

Read More Read more about Fundamental Web Security Broken: New Attacks Bypass Same-Origin Policy via HTTP/2 & SXG