Memory Leak Archives • Daily CyberSecurity

OpenSSL Issues Major Security Advisory: RSA and Memory Vulnerabilities Fixed OpenSSL Vulnerability RSA Memory Leak OpenSSL Vulnerability CVE-2025-15467 CVE-2022-2274 OpenSSL Vulnerabilities, Timing Side-Channel

OpenSSL Vulnerability RSA Memory Leak OpenSSL Vulnerability CVE-2025-15467 CVE-2022-2274 OpenSSL Vulnerabilities, Timing Side-Channel

OpenSSL Issues Major Security Advisory: RSA and Memory Vulnerabilities Fixed

Do Son April 8, 2026

OpenSSL has released a comprehensive security advisory detailing seven vulnerabilities ranging from Moderate to Low severity. The...

Critical libfuse io_uring Vulnerabilities Threaten Linux and Kubernetes Infrastructure libfuse vulnerability io_uring exploit

Critical libfuse io_uring Vulnerabilities Threaten Linux and Kubernetes Infrastructure

Do Son March 30, 2026

The FUSE (Filesystem in Userspace) project, a staple of the Linux ecosystem that allows non-privileged users to...

Decades-Old Flaw & New Heap Corruption: Critical glibc Bugs Revealed glibc Security Legacy DNS Flaws glibc Vulnerabilities Linux Security Alert glibc Vulnerability CVE-2026-0861

glibc Security Legacy DNS Flaws glibc Vulnerabilities Linux Security Alert glibc Vulnerability CVE-2026-0861

Decades-Old Flaw & New Heap Corruption: Critical glibc Bugs Revealed

Do Son January 19, 2026

The maintainers of the GNU C Library (glibc), the core library that underpins the vast majority of...

Node.js Patches Memory Leak and Permission Bypasses CVE-2024-27980 Node.js Vulnerability CVE-2025-55131

Node.js Patches Memory Leak and Permission Bypasses

Do Son January 14, 2026

The Node.js maintainers have kicked off the new year with a critical security release, addressing a trio...

CISA Alert: MongoBleed Added to KEV Catalog as 80,000+ Servers Face Active Exploitation Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

Knowledge Deliver RCE vulnerability FortiClient EMS Vulnerability CVE-2026-35616 Cisco SD-WAN Vulnerability CVE-2026-20122 PCPcat, Next.js RCE Salesloft breach, Salesforce CRM WIREFIRE web shell

CISA Alert: MongoBleed Added to KEV Catalog as 80,000+ Servers Face Active Exploitation

Do Son December 30, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has officially sounded the alarm on a critical vulnerability in...

PoC Released: MongoBleed Exploit Allows Unauthenticated Attackers to Drain MongoDB Memory MongoBleed, CVE-2025-14847

PoC Released: MongoBleed Exploit Allows Unauthenticated Attackers to Drain MongoDB Memory

Do Son December 29, 2025

Database administrators are facing a critical security emergency after the disclosure of a high-severity vulnerability in MongoDB,...

Critical Unauthenticated MongoDB Flaw Leaks Sensitive Data via zlib Compression MongoDB Vulnerability CVE-2026-25611 MongoDB zlib vulnerability, CVE-2025-14847 MongoDB Vulnerabilities, Data Access CVE-2024-6376 CVE-2025-0755

MongoDB Vulnerability CVE-2026-25611 MongoDB zlib vulnerability, CVE-2025-14847 MongoDB Vulnerabilities, Data Access CVE-2024-6376 CVE-2025-0755

Critical Unauthenticated MongoDB Flaw Leaks Sensitive Data via zlib Compression

Do Son December 23, 2025

A critical vulnerability was disclosed in MongoDB, one of the world’s most popular NoSQL database platforms. The...

High-Severity lz4-java Flaw (CVE-2025-66566) Leaks Uninitialized Memory During Decompression lz4-java Out-of-bounds Read, Library EOL

High-Severity lz4-java Flaw (CVE-2025-66566) Leaks Uninitialized Memory During Decompression

Do Son December 8, 2025

A high-severity vulnerability has been unearthed in lz4-java, a widely used Java library for the LZ4 compression...

Two Linux Kernel Vulnerabilities Expose HID Subsystem to Exploitation, PoC Published Linux HID PoC, USB Memory Leak

Two Linux Kernel Vulnerabilities Expose HID Subsystem to Exploitation, PoC Published

Do Son September 26, 2025

The Linux community is patching two new vulnerabilities in the HID (Human Interface Device) core subsystem, tracked...

“DanaBleed” Flaw Exposes DanaBot’s Inner Workings for Three Years

Do Son June 11, 2025

DanaBot—an infamous Malware-as-a-Service (MaaS) operation—unwittingly sabotaged itself with a memory leak flaw eerily reminiscent of the infamous...

Unpatched Telecom Flaws (CVSS 9.8) Enable Remote Code Execution: Critical Buffer Overflows Expose Core Infrastructure Buffer Overflow Telecom Vulnerabilities

Unpatched Telecom Flaws (CVSS 9.8) Enable Remote Code Execution: Critical Buffer Overflows Expose Core Infrastructure

Do Son June 4, 2025

Two newly disclosed vulnerabilities in popular telecommunications devices expose critical infrastructure to unauthenticated remote code execution and...

Critical Alert 1 Active Exploit Detected Today