API - API Security Blog

CVE-2025-5321

creation_timestamp| type| source ---|---|--- 2025-05-29 16:42:31+00:00| seen|...Read More ...

May 29, 2025

CVE-2025-48474

creation_timestamp| type| source ---|---|--- 2025-05-29 16:42:33+00:00| seen|...Read More ...

May 29, 2025

Medium: jetty

Issue Overview: In Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage can reach 100% upon receiving a large invalid TLS frame. (CVE-2021-28165) Affected P ...

May 29, 2025

Medium: jetty

Issue Overview: In Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage can reach 100% upon receiving a large invalid TLS frame. (CVE-2021-28165) Affected P ...

May 29, 2025

CVE-2025-46823 OpenMRS has Vulnerability in FHIR2 Module Privileges

openmrs-module-fhir2 provides the FHIR REST API and related services for OpenMRS, an open medical records system. In versions of the FHIR2 module prior to 2.5.0, privileges were not always correctly c ...

May 29, 2025

CVE-2025-48068

creation_timestamp| type| source ---|---|--- 2025-05-29 12:34:23+00:00| seen| https://bsky.app/profile/redmin78.bsky.social/post/3lqcq46gck22x 2025-05-29 13:59:57+00:00| seen| https://bsky.app/profile ...

May 29, 2025

CVE-2025-37993

creation_timestamp| type| source ---|---|--- 2025-05-29 13:56:24+00:00| seen|...Read More ...

May 29, 2025

CVE-2025-48370

auth-js is an isomorphic Javascript library for Supabase Auth. Prior to version 2.69.1, the library functions getUserById, deleteUser, updateUserById, listFactors and deleteFactor did not require the ...

May 29, 2025