CVSS 10

Urgent Patch Required: HPE AutoPass License Server Hits Maximum Severity Risk

• Vulnerability Report

Urgent Patch Required: HPE AutoPass License Server Hits Maximum Severity Risk

Do Son March 3, 2026 0

Hewlett Packard Enterprise (HPE) has issued an urgent security bulletin regarding a critical vulnerability in its AutoPass...

Read More Read more about Urgent Patch Required: HPE AutoPass License Server Hits Maximum Severity Risk

CVE-2026-23830: Critical SandboxJS Flaw (CVSS 10) Allows Total Sandbox Escape

• Vulnerability Report

CVE-2026-23830: Critical SandboxJS Flaw (CVSS 10) Allows Total Sandbox Escape

Do Son January 29, 2026 0

A perfect storm of missing checks has led to a maximum-severity vulnerability in SandboxJS, a library designed...

Read More Read more about CVE-2026-23830: Critical SandboxJS Flaw (CVSS 10) Allows Total Sandbox Escape

Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware

• Vulnerability Report

Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware

Do Son January 21, 2026 0

Oracle has kicked off 2026 with a massive security overhaul, releasing its first Critical Patch Update (CPU)...

Read More Read more about Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware

One API Call to Hijack: Critical Cal.com Flaw (CVE-2026-23478, CVSS 10) Bypasses 2FA

• Vulnerability Report

One API Call to Hijack: Critical Cal.com Flaw (CVE-2026-23478, CVSS 10) Bypasses 2FA

Do Son January 15, 2026 0

A critical security vulnerability has been found in Cal.com, the popular open-source scheduling platform used by individuals...

Read More Read more about One API Call to Hijack: Critical Cal.com Flaw (CVE-2026-23478, CVSS 10) Bypasses 2FA

Siemens Issues Critical Alert for Maximum 10.0 Vulnerability in Industrial Systems

• Vulnerability

Siemens Issues Critical Alert for Maximum 10.0 Vulnerability in Industrial Systems

Do Son January 14, 2026 0

Siemens has issued an urgent security warning for operators of its Industrial Edge ecosystem, disclosing a critical...

Read More Read more about Siemens Issues Critical Alert for Maximum 10.0 Vulnerability in Industrial Systems

CVE-2025-64095: Critical CVSS 10.0 Flaw in DNN Platform Allows Unauthenticated Website Overwrite

• Vulnerability Report

CVE-2025-64095: Critical CVSS 10.0 Flaw in DNN Platform Allows Unauthenticated Website Overwrite

Do Son October 31, 2025 0

The DNN Platform, a leading open-source Content Management System (CMS) in the Microsoft ecosystem, is urging its...

Read More Read more about CVE-2025-64095: Critical CVSS 10.0 Flaw in DNN Platform Allows Unauthenticated Website Overwrite

Arista Patches Critical Vulnerability in CloudVision ZTP With CVSS 10 Score

• Vulnerability

Arista Patches Critical Vulnerability in CloudVision ZTP With CVSS 10 Score

Do Son May 10, 2025 0

Arista Networks has issued a critical security advisory for a newly discovered vulnerability – CVE-2025-0505—rated with a...

Read More Read more about Arista Patches Critical Vulnerability in CloudVision ZTP With CVSS 10 Score

Arista Fixes Critical CloudVision Portal Vulnerability with CVSS 10 Score

• Vulnerability

Arista Fixes Critical CloudVision Portal Vulnerability with CVSS 10 Score

Do Son May 9, 2025 0

Arista Networks has released a critical security advisory detailing a severe vulnerability in its CloudVision Portal (CVP)...

Read More Read more about Arista Fixes Critical CloudVision Portal Vulnerability with CVSS 10 Score

Microsoft Patches Four Critical Azure and Power Apps Vulnerabilities, Including CVSS 10 Privilege Escalation

• Vulnerability

Microsoft Patches Four Critical Azure and Power Apps Vulnerabilities, Including CVSS 10 Privilege Escalation

Do Son May 9, 2025 0

Microsoft has addressed a cluster of critical vulnerabilities affecting several of its core cloud services—including Azure Automation,...

Read More Read more about Microsoft Patches Four Critical Azure and Power Apps Vulnerabilities, Including CVSS 10 Privilege Escalation

Erlang/OTP CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE

• Vulnerability

Erlang/OTP CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE

Do Son April 17, 2025 0

A critical vulnerability has been discovered in the SSH server component of Erlang/OTP, a technology widely used...

Read More Read more about Erlang/OTP CVE-2025-32433 (CVSS 10): Critical SSH Flaw Allows Unauthenticated RCE