424

1. CVE-2025-32873｜Django
   • https://www.djangoproject.com/weblog/2025/may/07/security-releases/
   • https://nvd.nist.gov/vuln/detail/CVE-2025-32873
   • DoS。パフォーマンス低下系。
2. CVE-2025-4207｜PostgreSQL
   • https://www.postgresql.org/support/security/CVE-2025-4207/
   • https://nvd.nist.gov/vuln/detail/CVE-2025-4207
   • DoS。GB18030(中国語？)のエンコーディング検証にbuffer over-readが見つかった。
3. CVE-2025-4132｜Rapid7 Web Site
   • https://nvd.nist.gov/vuln/detail/CVE-2025-4132
   • OpenRedirect。こんなの載るんだ枠。
4. CVE-2024-56523/CVE-2024-56524｜Radware Cloud WAF
   • https://kb.cert.org/vuls/id/722229
   • https://securityonline.info/radware-cloud-waf-vulnerable-to-filter-bypass-via-crafted-requests/
   • https://www.security-next.com/170081
   • 検知回避。