Researchers at Wordfence have disclosed a critical vulnerability (CVE-2025-11749, CVSS 9.8) in the popular AI Engine WordPress...
privilege escalation
Security researcher Hyeonjin Choi has detailed a serious privilege escalation vulnerability (CVE-2025-50168) in Microsoft Windows’ Win32K subsystem,...
A newly disclosed Windows vulnerability, CVE-2025-58726, allows attackers with low privileges to gain SYSTEM-level access remotely by...
Elastic Patches High-Severity Privilege Escalation Flaw in Elastic Cloud Enterprise (CVE-2025-37736)
Elastic Patches High-Severity Privilege Escalation Flaw in Elastic Cloud Enterprise (CVE-2025-37736)
Elastic has issued a security advisory addressing a high-severity vulnerability (CVE-2025-37736, CVSS 8.8) in Elastic Cloud Enterprise...
A critical security vulnerability has been identified and is being actively exploited in the King Addons for...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new flaws—CVE-2025-24893 in XWiki Platform and...
The Wordfence Threat Intelligence team has issued an urgent warning about CVE-2025-11533, a critical privilege escalation vulnerability...
The developers of MinIO, a popular high-performance, S3-compatible object storage platform, have issued a critical security advisory...
Veeam Software has released patches addressing three newly disclosed vulnerabilities, including two critical Remote Code Execution (RCE)...
Microsoft’s October 2025 Patch Tuesday has arrived with one of the largest security updates of the year—193...
Rockwell Automation has released a series of security advisories addressing vulnerabilities in several of its FactoryTalk and...
A research team from ETH Zurich has disclosed a critical vulnerability — CVE-2025-0033, dubbed RMPocalypse — that...
Security researcher Chino Kafuu details a flaw buried deep within the Transport Layer Security (TLS) subsystem of...
NVIDIA has released an important software security update for its GPU Display Driver, addressing multiple vulnerabilities that...
CrowdStrike has released security updates to address two vulnerabilities in its Falcon Sensor for Windows, identified as...
Security researchers at Rapid7 have identified a newly emerging cybercriminal group known as Crimson Collective, which has...
Amazon Web Services (AWS) has released an important security bulletin warning users of a critical local privilege...
Security researchers have identified two critical vulnerabilities in Nagios Log Server, the enterprise log management solution widely...
Security researchers at Wordfence have issued an urgent warning about an actively exploited authentication bypass vulnerability in...
IBM has released fixes for three security vulnerabilities affecting its IBM Security Verify Access and IBM Verify...