A critical vulnerability (CVE-2025-65108) has been disclosed in the widely used Markdown to PDF npm package, a...
Critical Vulnerability
A widely used Python library implementing JOSE standards, joserfc, has disclosed a critical uncontrolled resource consumption vulnerability—tracked...
Apache Causeway, a popular framework for rapidly developing domain-driven Java applications, has been found vulnerable to a...
METZ CONNECT GmbH, in coordination with CERT@VDE, has issued an urgent security advisory warning of multiple critical...
SolarWinds has released security updates addressing three critical vulnerabilities in Serv-U—its managed file transfer and FTP server...
Critical Flowise Flaw Allows Unauthenticated Remote Admin Takeover via Exposed Registration Endpoint
Critical Flowise Flaw Allows Unauthenticated Remote Admin Takeover via Exposed Registration Endpoint
The team behind Flowise—a popular open-source platform for building AI agents and LLM workflows—has issued an urgent...
The pgAdmin development team has issued patches addressing four newly disclosed security vulnerabilities impacting pgAdmin versions up...
IBM has released a new security bulletin addressing multiple high-severity vulnerabilities affecting AIX 7.2, AIX 7.3, and...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new advisory detailing multiple high-severity vulnerabilities...
Cybersecurity firms are sounding the alarm over a critical vulnerability in Fortinet FortiWeb, the company’s Web Application...
Zoho Corporation has released an urgent security advisory addressing a critical severity SQL injection vulnerability affecting Analytics...
Dell has issued a security advisory warning customers of a critical severity vulnerability affecting Dell Data Lakehouse...
The Apache Software Foundation (ASF) has released an important security update for Apache OFBiz, its open-source enterprise...
Milvus, a leading open-source vector database that powers AI and large-scale search applications, has disclosed a critical...
Zimbra has issued a critical security patch, Zimbra Daffodil (v10.1.13), to address a host of vulnerabilities in...
The maintainers of SuiteCRM, the popular open-source customer relationship management (CRM) platform, have released an urgent security...
Devolutions, a leading provider of privileged access management (PAM) and remote connection solutions, has released an urgent...
A critical configuration flaw (CVE-2025-59396) has been discovered in WatchGuard Firebox devices, allowing remote attackers to gain...
GE Vernova’s Electrification Software division has released a critical security advisory addressing a high-severity authentication vulnerability (CVE-2025-3222)...
High-Severity Cisco ISE Flaw (CVE-2025-20343) Allows Unauthenticated DoS via Crafted RADIUS Requests
High-Severity Cisco ISE Flaw (CVE-2025-20343) Allows Unauthenticated DoS via Crafted RADIUS Requests
Cisco has released a security update to address a high-severity vulnerability (CVE-2025-20343, CVSS 8.6) affecting its Identity...
Cisco has released urgent security updates to address two critical vulnerabilities in its Unified Contact Center Express...
The Django Software Foundation (DSF) has released new security updates for multiple branches of the Django web...