Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/womble/statuses/115810691058950692">Matt Palmer (womble@infosec.exchange)'s status on Wednesday, 31-Dec-2025 07:44:06 JST</a><a href="https://infosec.exchange/@womble" title="womble@infosec.exchange"><img src="https://gnusocial.jp/avatar/106256-48-20231208053319.webp" width="48" height="48" alt="Matt Palmer" style="position: absolute; left: 0; top: 0;">Matt Palmer</a><div><ul><li></ul></div></section><article><p><a href="https://cyberplace.social/@GossiTheDog">@GossiTheDog</a> that seems like a very difficult claim to prove - CVEs don't usually come with sufficient information to be able to detect exploitation at a distance.</p><p>In any event, the vast majority of CVEs don't have this degree of impact and ease of exploitation. The moment that this kind of vuln - pre-auth information disclosure - is known to exist, it's basically inevitable that many actors, for a variety of reasons, will seek to develop an exploit for it.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5993553#notice-11819477">In conversation</a><time datetime="2025-12-31T07:44:06+09:00" title="Wednesday, 31-Dec-2025 07:44:06 JST">about 3 months ago</time> <span>from <span><a href="https://gnusocial.jp/notice/11819477" rel="external" title="Sent from gnusocial.jp via ActivityPub">gnusocial.jp</a></span></span><a href="https://gnusocial.jp/notice/11819477">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="http://distance.In/">distance.in - このウェブサイトは販売用です！ - distance リソースおよび情報</a></h5><div></div></header><div>このウェブサイトは販売用です！ distance.in は、あなたがお探しの情報の全ての最新かつ最適なソースです。一般トピックからここから検索できる内容は、distance.inが全てとなります。あなたがお探しの内容が見つかることを願っています！</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Matt Palmer (womble@infosec.exchange)'s status on Wednesday, 31-Dec-2025 07:44:06 JSTMatt Palmer
- Kevin Beaumont
@GossiTheDog that seems like a very difficult claim to prove - CVEs don't usually come with sufficient information to be able to detect exploitation at a distance.
In any event, the vast majority of CVEs don't have this degree of impact and ease of exploitation. The moment that this kind of vuln - pre-auth information disclosure - is known to exist, it's basically inevitable that many actors, for a variety of reasons, will seek to develop an exploit for it.
In conversationabout 3 months ago from gnusocial.jppermalink
Attachments
1. No result found on File_thumbnail lookup.
  distance.in - このウェブサイトは販売用です！ - distance リソースおよび情報
  このウェブサイトは販売用です！ distance.in は、あなたがお探しの情報の全ての最新かつ最適なソースです。一般トピックからここから検索できる内容は、distance.inが全てとなります。あなたがお探しの内容が見つかることを願っています！

Public

Embed Notice

HTML Code

Corresponding Notice