A security researcher has disclosed a serious flaw in the UDisks daemon, a widely used component for...
privilege escalation
At DEF CON 2025, Akamai security researcher Yuval Gordon revealed the story of BadSuccessor (CVE-2025-53779), an Active...
The Hikvision Security Response Center (HSRC) has released a new advisory detailing three vulnerabilities affecting different versions...
Dell Technologies has issued a security advisory addressing several high-severity vulnerabilities in its ThinOS 10 platform, widely...
The Langflow project has issued an important security advisory regarding a newly discovered vulnerability that poses a...
In April, Microsoft has patched a high-severity, zero-day vulnerability (CVE-2025-29824) in the Windows Common Log File System...
A newly disclosed vulnerability in the Capsule Kubernetes multi-tenancy framework exposes organizations to privilege escalation and cross-tenant...
Zoom has released security updates addressing two significant vulnerabilities in its Windows-based clients—CVE-2025-49456 and CVE-2025-49457—that could enable...
Security researcher Jann Horn from Google Project Zero disclosed the technical details and proof-of-concept exploit code for...
Yesterday, Microsoft issued a critical security advisory addressing a newly identified vulnerability—CVE-2025-53786—in hybrid Microsoft Exchange environments. The...
Elastic has issued patches for two local privilege escalation (LPE) vulnerabilities affecting its popular observability tools—APM Server...
BeyondTrust, a global leader in intelligent identity and access security, has issued two advisories addressing two local...
The CERT Coordination Center (CERT/CC) has issued a Vulnerability Note detailing a critical privilege escalation flaw affecting...
NVIDIA has released software security updates for its GPU Display Drivers and vGPU software across Windows, Linux,...
Amazon Web Services (AWS) has released a security patch for a high-severity local privilege escalation vulnerability (CVE-2025-8069)...
A newly disclosed vulnerability in ASUSTOR’s Windows-based applications—ASUSTOR Backup Plan (ABP) and ASUSTOR EZSync (AES)—could allow local...
Sophos has patched three separate high-severity local privilege escalation (LPE) vulnerabilities in its widely used Intercept X...
In April 2025, Microsoft issued a critical security patch addressing a serious vulnerability in the Windows Common...
Lenovo has issued a security advisory disclosing three newly discovered vulnerabilities in Lenovo Vantage, a widely pre-installed...
In a comprehensive and technically expose, Datadog Security Labs has unveiled a privilege escalation method that allows...