Common Vulnerabilities and Exposures (CVE)

This page highlights information about CVE's & my personally published CVEs, documenting security vulnerabilities I have discovered and reported.

What is a Common Vulnerabilities and Exposure (CVE)

A CVE, or Common Vulnerabilities and Exposures, is a publicly disclosed cybersecurity vulnerability. Each CVE is assigned a unique identifier (e.g., CVE-2025-12345) that makes it easier for organizations, researchers, and IT teams to track, discuss, and address specific security flaws.

CVE records are managed by the CVE Program, overseen by MITRE Corporation and sponsored by the U.S. Department of Homeland Security. They serve as a standardized reference point for known security weaknesses, helping to ensure consistent communication across vendors, security tools, and incident response teams.

Published CVE Record

•CVE-2025-50377 – Token replay in W.W. Norton nerd-service & Brightspace LMS
•CVE-2025-50378 – LTI OAuth1 replay authentication bypass
•CVE-2025-50379 – PII exposure during LTI login workflows
•CVE-2025-50381 – DoS via unthrottled API requests
•CVE-2025-50382 – CSRF in Brightspace LMS quickLink.d2l

•CVE-2025-32808 -

•CVE-2025-32809 -

Common Vulnerabilities and Exposures (CVE)

What is a Common Vulnerabilities and Exposure (CVE)

Published CVE Record

Let's Connect