Industrial automation giant ABB has disclosed a critical missing authentication vulnerability (CVE-2025-9574) affecting its ALS-mini-S4/S8 IP intelligent...
Critical Vulnerability
The WSO2 project has released urgent security advisories addressing two critical access control vulnerabilities—CVE-2025-9804 and CVE-2025-10611—that affect...
JPCERT/CC and the developer MOTEX Inc. have issued an urgent advisory for a critical remote code execution...
TP-Link Systems has released a new firmware update addressing four high- and critical-severity vulnerabilities in its popular...
The developers of Squid, the widely used open-source caching proxy for web traffic acceleration, have disclosed and...
Moxa, a leading manufacturer of industrial networking and security appliances, has released an urgent security advisory addressing...
ConnectWise has released a critical security update for its Automate remote monitoring and management (RMM) platform, addressing...
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Adobe Experience Manager (AEM) vulnerability to...
The Samba Team has released an urgent security advisory addressing two vulnerabilities, including a critical command injection...
The Apache Software Foundation has issued a new security advisory addressing a critical vulnerability in Apache ActiveMQ’s...
Siemens has released a critical security update for its SIMATIC ET 200SP communication processors, addressing an authentication...
Rockwell Automation has published a new security advisory warning customers about three vulnerabilities affecting its 1783-NATR Network...
Veeam Software has released patches addressing three newly disclosed vulnerabilities, including two critical Remote Code Execution (RCE)...
Elastic has released urgent security updates for Elastic Cloud Enterprise (ECE) to patch a critical vulnerability (CVE-2025-37729)...
Oracle has issued an emergency Security Alert Advisory for a newly discovered vulnerability affecting Oracle E-Business Suite,...
A critical security flaw has been discovered in Cherry Studio, a cross-platform desktop client that supports multiple...
A critical authentication bypass vulnerability has been discovered in Better Auth, a popular framework-agnostic authentication and authorization...
A critical-severity vulnerability has been disclosed in Happy DOM, a popular JavaScript package used to emulate web...
Esri has released a critical security patch addressing a SQL injection vulnerability (CVE-2025-57870) in ArcGIS Server, a...
The maintainers of Flowise, an open-source generative AI development platform for building AI agents and LLM workflows,...
The Akka.NET team has issued a critical security advisory for a severe vulnerability in its Akka.Remote module...
Security researchers have identified two critical vulnerabilities in Nagios Log Server, the enterprise log management solution widely...