Ullaakut on Reddit posted this toolset: Gorsair, a tool to remotely access the exposed Docker API of vulnerable Docker containers. Works, too.
Someone already pwned TLS 1.3, for crying out loud.
Cool attack on CORS configuration in mobile devices
RCE in Libreoffice. Not so free NOW areya?
And that’s the news. Stay warm.