A newly disclosed critical vulnerability—CVE-2025-3699—affecting a wide range of Mitsubishi Electric air conditioning system models has raised...
Authentication Bypass
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a security advisory warning users of multiple high-impact...
In a major coordinated disclosure, Rapid7 has unveiled a disturbing set of vulnerabilities affecting a wide range...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a risk advisory on three newly discovered vulnerabilities...
Quest Software has released urgent security hotfixes addressing four newly discovered vulnerabilities in its KACE Systems Management...
Mandiant successfully breached a fully patched instance of the Aviatrix Controller—a central component in Software-Defined Networking (SDN)...
A critical vulnerability has been disclosed in KAON’s KCM3100 Wi-Fi gateway devices that could allow attackers to...
Gamers and PC enthusiasts relying on ASUS Armoury Crate to manage their high-performance systems are urged to...
Teleport, a leading platform for secure infrastructure access, has disclosed a critical remote authentication bypass vulnerability—tracked as...
KUNBUS has issued a critical security advisory for its RevPi Webstatus application following the discovery of an...
Hewlett Packard Enterprise (HPE) has issued a security bulletin detailing multiple severe vulnerabilities in its StoreOnce Software,...
Netwrix, a provider of identity governance and access management solutions, has issued a critical security advisory warning...
Weidmueller Interface GmbH & Co. KG, a global manufacturer of industrial connectivity and automation solutions, has disclosed...
A newly disclosed and highly critical vulnerability, tracked as CVE-2025-4978 with a CVSSv4 score of 9.3, has...
Versa Concerto, a popular SD-WAN and network orchestration platform used by large enterprises and governments, is under...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory addressing two high-severity vulnerabilities...
The PgPool Global Development Group has issued a high-severity security advisory for Pgpool-II, a widely used middleware...
Jenkins, a popular open-source automation server, is a crucial tool for many development and operations teams. A...
Fortinet has released patches for a critical vulnerability (CVE-2025-22252, CVSS 9.0) affecting multiple products, including FortiOS, FortiProxy,...
A pair of critical-severity vulnerabilities in the OpenPubkey authentication protocol and its companion tool, OPKSSH, could allow...
Ivanti has released a critical security patch for its on-premises Neurons for ITSM platform, addressing a severe...
Ivanti has released a security updates addressing two vulnerabilities in Endpoint Manager Mobile (EPMM)—CVE-2025-4427 and CVE-2025-4428—that, when...