WatchGuard has issued an urgent warning to customers regarding a critical, actively exploited remote code execution vulnerability...
CVE News
On December 3, 2025, the React and Next.js ecosystems were alerted to a maximum-severity vulnerability enabling unauthenticated...
ASUS has issued an urgent security advisory addressing multiple critical vulnerabilities, including a severe authentication bypass flaw...
Grafana Labs has issued a critical security advisory for its Enterprise product, warning of a maximum severity...
Google has released an emergency security update for its Chrome browser to address CVE-2025-13223, a high-severity type...
A critical security vulnerability in the XWiki Platform, tracked as CVE-2025-24893, is now being actively exploited by...
ASUS has issued a security advisory concerning a critical authentication bypass vulnerability, tracked as CVE-2025-59367, affecting several...
A critical vulnerability in Gladinet’s Triofox file-sharing platform has been actively exploited by threat actors to bypass...
SAP has released its November 2025 security updates, a critical patch batch addressing 18 new security notes...
A critical security vulnerability in the Service Finder WordPress theme and its accompanying Bookings plugin is being...
A critical vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) software, tracked as CVE-2025-10035, is being actively...
The Redis security team has issued patches for a critical, maximum-severity vulnerability that enables authenticated attackers to...
A significant security vulnerability, tracked as CVE-2025-59489, has been identified within the Unity game engine, posing a...
Security researchers have identified a new zero-day attack campaign targeting Zimbra Collaboration Suite (ZCS) that leverages malicious...
Networking hardware manufacturer DrayTek is confronting a significant security crisis involving multiple vulnerabilities in its Vigor router...
Western Digital has released firmware updates to address a critical-severity vulnerability in multiple My Cloud Network Attached...
A critical vulnerability in Fortra’s GoAnywhere Managed File Transfer (MFT) software, tracked as CVE-2025-10035, was actively exploited...
Security researchers have identified new vulnerabilities in Supermicro’s Baseboard Management Controller (BMC) firmware that allow attackers to...
A newly identified vulnerability in multiple versions of OnePlus’s OxygenOS allows any application installed on a device...
A recently disclosed vulnerability in Microsoft’s Entra ID (formerly Azure AD) identity management service could have allowed...
