The Go team has rolled out versions 1.24.4 and 1.23.10, addressing three critical security vulnerabilities affecting core...
Vulnerability Report
A critical vulnerability in AWS Amplify’s UI generation tool, @aws-amplify/codegen-ui, is putting developers—and their build pipelines—at serious...
Kaspersky researchers have uncovered a fresh wave of attacks exploiting CVE-2024-3721 to deploy a revamped variant of...
Nintendo’s recently launched Switch 2 console has already had a vulnerability discovered by enthusiasts. Security researcher David...
The Jenkins community has issued a high-severity security advisory for a newly disclosed vulnerability in the Gatling...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory warning of multiple high-impact...
Amazon has issued a security advisory for a memory corruption vulnerability in the widely used FreeRTOS-Plus-TCP stack....
In a recent security advisory, MIM Software Inc. disclosed a high-severity vulnerability, CVE-2025-1701, affecting the MIM Admin...
Weaponizing Group Policy: Custom Client-Side Extensions as a Stealthy Backdoor into Active Directory
Weaponizing Group Policy: Custom Client-Side Extensions as a Stealthy Backdoor into Active Directory
A newly published report by Antoine Cauchois, Staff Research Engineer at Tenable, reveals a stealthy persistence technique...
Hewlett Packard Enterprise (HPE) has issued a security advisory addressing multiple high-impact vulnerabilities in its Insight Remote...
In a stunningly fast-moving sequence of events, a serious vulnerability in the widely-used Roundcube webmail client—CVE-2025-49113—has been...
Cisco has issued advisories for two newly disclosed vulnerabilities affecting widely used enterprise software: Cisco Customer Collaboration...
A newly disclosed vulnerability in the Auth0 PHP SDK—a widely-used authentication toolkit with over 16 million downloads—poses...
Cisco has issued security advisories for two high-severity vulnerabilities—one in the Cisco Integrated Management Controller (IMC) and...
A serious vulnerability has been uncovered in the widely-used Auth0 Next.js SDK—a library that helps developers implement...
As containers become the backbone of modern software deployment, many organizations still misjudge their isolation guarantees —...
Cisco has patched a critical vulnerability (CVE-2025-20286, CVSS 9.9) that affects cloud-based deployments of its Identity Services...
ABB has issued a Cyber Security Advisory addressing a critical session management vulnerability affecting its EIBPORT V3...
Broadcom has released important updates addressing three newly disclosed vulnerabilities in VMware NSX, all of which expose...
Three new vulnerabilities in Qualcomm’s Adreno GPU driver have been added to CISA’s Known Exploited Vulnerabilities (KEV)...
IBM has released a security advisory addressing multiple vulnerabilities discovered in its QRadar Suite Software and Cloud...