CVE-2025-4801 – Apache HTTP Server Command Injection

June 10, 2025

CVE ID : CVE-2025-4801

Published : June 10, 2025, 4:15 p.m. | 34 minutes ago

Description : Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4653 – Pandora ITSM Command Injection

Next Article CVE-2025-49142 – Nautobot Jinja2 Templating Feature Privilege Escalation Vulnerability

Highlights

CVE-2025-47436 – Apache ORC Heap-based Buffer Overflow Vulnerability

May 14, 2025

CVE ID : CVE-2025-47436

Published : May 14, 2025, 2:15 p.m. | 51 minutes ago

Description : Heap-based Buffer Overflow vulnerability in Apache ORC.

A vulnerability has been identified in the ORC C++ LZO decompression logic, where specially crafted malformed ORC files can cause the decompressor to allocate a 250-byte buffer but then attempts to copy 295 bytes into it. It causes memory corruption.

This issue affects Apache ORC C++ library: through 1.8.8, from 1.9.0 through 1.9.5, from 2.0.0 through 2.0.4, from 2.1.0 through 2.1.1.

Users are recommended to upgrade to version 1.8.9, 1.9.6, 2.0.5, and 2.1.2, which fix the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-4801 – Apache HTTP Server Command Injection

Apache Tomcat Under Attack: Massive Brute-Force Campaign Targets Manager Interfaces

Warning: Discontinued Amazon Cloud Cam Has Vulnerability (CVE-2025-6031), Exposing Your Network

Utopia Digital AI Robots Are Rising – And the Godfather of Sun-Intelligence, Mr. Mohan, Says It’s Just the Beginning

Ecommerce PPC Management: Maximize ROI & Drive Sales with Targeted Campaigns

Competitive programming with AlphaCode

CVE-2025-4412 – Viscosity macOS Launch Agent Dynamic Library Loading Vulnerability

CVE-2025-47436 – Apache ORC Heap-based Buffer Overflow Vulnerability

CVE-2025-49130 – Laravel Translation Manager Stored Cross-Site Scripting Vulnerability

CVE-2022-46729 – Apache Struts Deserialization Vulnerability

The designer’s handbook for developer handoff

CVE-2025-4801 – Apache HTTP Server Command Injection

Related Posts