CYFIRMA has uncovered a new threat model called RenderShock — a zero-click attack strategy that turns convenience...
Vulnerability Report
In a warning issued by CERT/CC, multiple high-impact vulnerabilities have been identified in Gigabyte UEFI firmware that...
Axis Communications has issued a security advisory for a critical vulnerability affecting several of its flagship software...
Rockwell Automation has issued a security advisory detailing two vulnerabilities affecting its Arena Simulation software. Disclosed by...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2025-5777 to its Known Exploited Vulnerabilities...
The Apache Software Foundation has issued a new release—Apache HTTP Server version 2.4.64—patching eight security vulnerabilities that...
On July 1, 2025—just a day after its public disclosure—Huntress witnessed the active exploitation of a critical...
A recent technical deep-dive by Synacktiv has exposed a serious yet often overlooked risk in Laravel—the popular...
The Helm project—the popular Kubernetes package manager—has released a critical security advisory for CVE-2025-53547, a high-severity vulnerability...
A critical vulnerability in the SureForms WordPress plugin—which has over 200,000 active installations—has exposed websites to a...
GitLab has released security updates for its Community Edition (CE) and Enterprise Edition (EE), addressing multiple vulnerabilities...
A newly discovered critical vulnerability (CVE-2025-7206) in the D-Link DIR-825 router running firmware version 2.10 poses a...
Multiple critical vulnerabilities have been discovered in Ruckus Wireless’ Virtual SmartZone (vSZ) and Network Director (RND), posing...
Researchers have unveiled the Opossum Attack, a novel class of desynchronization vulnerabilities that exploits the coexistence of...
Schneider Electric has issued a high-severity security advisory disclosing multiple vulnerabilities affecting its flagship infrastructure management platform,...
The AhnLab Security Intelligence Center (ASEC) has issued a fresh warning on the ongoing exploitation of a...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent security advisory highlighting multiple critical vulnerabilities...
Zoom has rolled out a security update patching six newly disclosed vulnerabilities affecting its Workplace, Rooms, and...
The Git Project has released updates addressing three significant vulnerabilities impacting Git versions up to v2.50.0, including...
iemens has released a critical security advisory detailing multiple high-severity vulnerabilities affecting SINEC NMS, its flagship network...
Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)
Citrix Warns of Privilege Escalation Vulnerability in Windows Virtual Delivery Agent (CVE-2025-6759)
Citrix has issued a security advisory concerning a newly identified local privilege escalation vulnerability affecting its Windows...
Microsoft’s July 2025 Patch Tuesday arrives with a hefty load: a total of 140 vulnerabilities patched, including...