The OpenWrt Project has patched two high-severity vulnerabilities affecting its Linux-based firmware for embedded devices. The flaws,...
Vulnerability Report
Two high-severity vulnerabilities disclosed by HashiCorp could expose Vault deployments to denial-of-service (DoS) attacks and cross-account authentication...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert warning of multiple high-severity vulnerabilities affecting...
Microsoft has recently issued an emergency security update for enterprise Windows Server Update Services (WSUS) to address...
The Wordfence Threat Intelligence team has issued a new warning about the resurgence of large-scale attacks exploiting...
Researchers from Symantec and Carbon Black have published a detailed analysis of Warlock ransomware, a newly emerging...
The Internet Systems Consortium (ISC) has issued patches for three high-severity vulnerabilities impacting the BIND 9 DNS...
Atlassian has released patches addressing a high-severity Path Traversal vulnerability (CVE-2025-22167) affecting Jira Software Data Center and...
Security researcher Batuhan Er from HawkTrace has detailed a critical remote code execution (RCE) vulnerability in Microsoft...
The SUSE Rancher Security team has issued a critical advisory addressing a command injection and buffer overflow...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding a critical authentication bypass vulnerability...
Oracle has released its October 2025 Critical Patch Update (CPU), fixing a massive 374 security vulnerabilities and...
GitLab has released versions 18.5.1, 18.4.3, and 18.3.5 for both Community Edition (CE) and Enterprise Edition (EE)...
Google has released a Stable Channel update (version 141.0.7390.122/.123) for Windows, Mac, and Linux, addressing a high-severity...
Swiss building automation manufacturer Sauter AG has disclosed six vulnerabilities in the embedded firmware of its modulo...
Industrial automation giant ABB has disclosed a critical missing authentication vulnerability (CVE-2025-9574) affecting its ALS-mini-S4/S8 IP intelligent...
The WSO2 project has released urgent security advisories addressing two critical access control vulnerabilities—CVE-2025-9804 and CVE-2025-10611—that affect...
JPCERT/CC and the developer MOTEX Inc. have issued an urgent advisory for a critical remote code execution...
TP-Link Systems has released a new firmware update addressing four high- and critical-severity vulnerabilities in its popular...
Microsoft has confirmed the remediation of a critical security vulnerability in its ASP.NET Core product, identified as...
Researchers recently disclosed a path-traversal vulnerability (CVE-2025-11001) in the open-source archiver 7-Zip that allows attackers to craft...
The developers of Squid, the widely used open-source caching proxy for web traffic acceleration, have disclosed and...