CVE-2025-3864 – Hackney HTTP Connection Pool Exhaustion Vulnerability

May 28, 2025

CVE ID : CVE-2025-3864

Published : May 28, 2025, 12:15 p.m. | 1 hour, 22 minutes ago

Description : Hackney fails to properly release HTTP connections to the pool after handling 307 Temporary Redirect responses. Remote attackers can exploit this to exhaust connection pools, causing denial of service in applications using the library.
Fix for this issue has been included in 1.24.0 release.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5297 – SourceCodester Computer Store System Stack-Based Buffer Overflow Vulnerability

Next Article CVE-2025-48292 – GoodLayers Tourmaster PHP Remote File Inclusion Vulnerability

Highlights

CVE-2025-24341 – CtrlX OS HTTP Request Flood Denial-of-Service Vulnerability

April 30, 2025

CVE ID : CVE-2025-24341

Published : April 30, 2025, 12:15 p.m. | 39 minutes ago

Description : A vulnerability in the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to induce a Denial-of-Service (DoS) condition on the device via multiple crafted HTTP requests. In the worst case, a full power cycle is needed to regain control of the device.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

My top 5 must-play PC games for the second half of 2025 — Will they live up to the hype?

A week of hell with my Windows 11 PC really makes me appreciate the simplicity of Google’s Chromebook laptops

Elden Ring Nightreign Night Aspect: How to beat Heolstor the Nightlord, the final boss

New Xbox games launching this week, from June 2 through June 8 — Zenless Zone Zero finally comes to Xbox

Student Record Android App using SQLite

Student Record Android App using SQLite

When Array uses less memory than Uint8Array (in V8)

Laravel 12 Starter Kits: Definite Guide Which to Choose

My top 5 must-play PC games for the second half of 2025 — Will they live up to the hype?

My top 5 must-play PC games for the second half of 2025 — Will they live up to the hype?

A week of hell with my Windows 11 PC really makes me appreciate the simplicity of Google’s Chromebook laptops

Elden Ring Nightreign Night Aspect: How to beat Heolstor the Nightlord, the final boss

CVE-2025-3864 – Hackney HTTP Connection Pool Exhaustion Vulnerability

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

DevSecOps Phase 4B: Manual Penetration Testing

Mistral-Small-24B-Instruct-2501 is now available on SageMaker Jumpstart and Amazon Bedrock Marketplace

MAINGEAR’s new APEX desktops push the limits of pre-built gaming PCs with custom cooling loops and hidden cables

Error’d: Well Done

Azure Access to Internal Selenium Server

CVE-2025-24341 – CtrlX OS HTTP Request Flood Denial-of-Service Vulnerability

Dell revives Alienware Area-51 with powerful new gaming PCs

Parsera: Lightweight Python Library for Scraping with LLMs

IMSProg – I2C, SPI and Microwire EEPROM/Flash chip programmer

CVE-2025-3864 – Hackney HTTP Connection Pool Exhaustion Vulnerability

Related Posts