Tag: session resumption
-
The Cloudflare Blog: Vulnerability transparency: strengthening security through responsible disclosure
Source URL: https://blog.cloudflare.com/vulnerability-transparency-strengthening-security-through-responsible/ Source: The Cloudflare Blog Title: Vulnerability transparency: strengthening security through responsible disclosure Feedly Summary: In line with CISA’s Secure By Design pledge, Cloudflare shares its vulnerability disclosure process, CVE issuance criteria, and CNA duties. AI Summary and Description: Yes **Summary:** The text discusses Cloudflare’s commitment to cybersecurity as exemplified by its participation…
-
Bulletins: Vulnerability Summary for the Week of February 3, 2025
Source URL: https://www.cisa.gov/news-events/bulletins/sb25-041 Source: Bulletins Title: Vulnerability Summary for the Week of February 3, 2025 Feedly Summary: High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info .TUBE gTLD–.TUBE Video Curator Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in .TUBE gTLD .TUBE Video Curator allows Reflected XSS. This issue affects…
-
The Cloudflare Blog: Resolving a Mutual TLS session resumption vulnerability
Source URL: https://blog.cloudflare.com/resolving-a-mutual-tls-session-resumption-vulnerability/ Source: The Cloudflare Blog Title: Resolving a Mutual TLS session resumption vulnerability Feedly Summary: Cloudflare patched a Mutual TLS (mTLS) vulnerability (CVE-2025-23419) reported via its Bug Bounty Program. The flaw in session resumption allowed client certificates to authenticate across different AI Summary and Description: Yes Summary: The text discusses a recently discovered…