Fortinet has issued an urgent security advisory for a critical remote unauthenticated command injection vulnerability affecting multiple...
Vulnerability Report
Today, 2025, SAP released 15 new Security Notes and 4 updates to previously issued advisories as part...
SafeBreach Labs researchers have uncovered a new class of denial-of-service (DoS) vulnerabilities in Microsoft Windows that could...
Security researchers at Unit 42 have issued an urgent warning regarding CVE-2025-32433, a CVSS 10.0-rated vulnerability in...
The Apache bRPC project has issued an important security advisory addressing a critical flaw in its Redis...
A recently disclosed Chromium issue details a critical security vulnerability (CVE-2025-4609) discovered on April 23, 2025, by...
BadCam: Critical Flaws in Lenovo Linux Webcams Allow Remote BadUSB Attacks and Persistent Infections
BadCam: Critical Flaws in Lenovo Linux Webcams Allow Remote BadUSB Attacks and Persistent Infections
Security researchers at Eclypsium have identified critical vulnerabilities in select Lenovo USB webcams that could allow attackers...
Security researcher Ron Ben Yizhak from SafeBreach Labs has uncovered a novel attack technique dubbed Endpoint Mapper...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-severity alert for a missing authentication...
A newly disclosed vulnerability in 7-Zip, tracked as CVE-2025-55188, has been identified by security researcher Landon. The...
Xerox has released a security update for FreeFlow Core, addressing two high-impact vulnerabilities that could allow attackers...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a security advisory warning about a critical authentication...
Security researcher Jann Horn from Google Project Zero disclosed the technical details and proof-of-concept exploit code for...
Security researchers at ESET have uncovered a zero-day path traversal vulnerability in the Windows version of WinRAR...
The Python Package Index (PyPI) has announced a set of new upload restrictions aimed at protecting Python...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a risk evaluation warning about multiple high-severity...
A severe security vulnerability has been uncovered in the Ruby implementation of JSON Web Encryption (JWE), tracked...
Yesterday, Microsoft issued a critical security advisory addressing a newly identified vulnerability—CVE-2025-53786—in hybrid Microsoft Exchange environments. The...
JPCERT/CC has issued a vulnerability note detailing two critical security flaws in SATO Corporation’s widely deployed industrial...
The Cybersecurity and Infrastructure Security Agency (CISA) has released an in-depth Malware Analysis Report warning of a...
A critical security vulnerability has been discovered in the Everest Forms plugin, a widely used WordPress plugin...
A recent incident response operation in Brazil has revealed a stealthy and destructive threat abusing the trusted...