Critical Vulnerabilities

Gigabyte Motherboard UEFI Vulnerabilities Expose Systems to Persistent Bootkit Malware

CVE News

Gigabyte Motherboard UEFI Vulnerabilities Expose Systems to Persistent Bootkit Malware

Security researchers have identified critical vulnerabilities in Gigabyte motherboards that allow attackers to bypass Secure Boot and...

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

CVE News

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

Proof-of-concept (PoC) exploits for a critical SQL injection (SQLi) vulnerability in Fortinet FortiWeb have been publicly released,...

NVIDIA’s GDDR6 Rowhammer Mitigation Guidance: Technical Analysis and Industry Implications

Red-Team

NVIDIA’s GDDR6 Rowhammer Mitigation Guidance: Technical Analysis and Industry Implications

NVIDIA has issued guidance urging users to enable System Level Error-Correcting Code (ECC) protections for GDDR6-equipped GPUs...

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

CVE News

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

A critical vulnerability in OpenVSX, the open-source extension marketplace used by popular VS Code forks like Cursor...

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

CVE News

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

Four vulnerabilities in OpenSynergy’s BlueSDK Bluetooth stack, collectively dubbed PerfektBlue, have been identified as affecting vehicles from...

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

CVE News

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

Microsoft has released two critical cumulative updates for Windows 11 – KB5062553 for version 24H2 and KB5062552...

Microsoft’s July 2025 Patch Tuesday Addresses 137 Vulnerabilities Including Critical WebDAV Zero-Day

CVE News

Microsoft’s July 2025 Patch Tuesday Addresses 137 Vulnerabilities Including Critical WebDAV Zero-Day

Microsoft’s July 2025 Patch Tuesday has released security updates addressing 137 vulnerabilities across its product line, including...

Brother Printer Vulnerability: Unpatchable Default Admin Password Flaw Affects 689 Models

CVE News

Brother Printer Vulnerability: Unpatchable Default Admin Password Flaw Affects 689 Models

A critical vulnerability affecting 689 Brother printer models, along with devices from Fujifilm, Toshiba, and Konica Minolta,...

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

CVE News

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

Cisco has issued an urgent security advisory regarding two critical remote code execution (RCE) vulnerabilities affecting its...

Windows 10 KB5061087 Update: Critical Fixes for Start Menu and Printer Issues

News

Windows 10 KB5061087 Update: Critical Fixes for Start Menu and Printer Issues

Microsoft has released the June 2025 non-security preview update for Windows 10 version 22H2, addressing critical system...

Critical Privilege Escalation Vulnerability in WordPress Motors Theme Actively Exploited

CVE News

Critical Privilege Escalation Vulnerability in WordPress Motors Theme Actively Exploited

A critical privilege escalation vulnerability (CVE-2025-4322) in the WordPress Motors theme is being actively exploited in the...

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

CVE News

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about attackers exploiting a high-severity vulnerability...

Critical Linux udisks Vulnerability Allows Local Privilege Escalation to Root

CVE News

Critical Linux udisks Vulnerability Allows Local Privilege Escalation to Root

A newly discovered vulnerability in the Linux udisks service (CVE-2025-6019) enables local attackers to escalate privileges to...

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

CVE News

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

Veeam has released urgent security updates to address a critical remote code execution (RCE) vulnerability in its...

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

CVE News

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

A critical vulnerability chain in Sitecore Experience Platform (XP) allows attackers to gain full server control starting...

Trend Micro Patches Critical RCE and Authentication Bypass Vulnerabilities in Apex Central and Endpoint Encryption

CVE News

Trend Micro Patches Critical RCE and Authentication Bypass Vulnerabilities in Apex Central and Endpoint Encryption

Trend Micro has released urgent security updates addressing multiple critical-severity vulnerabilities in its Apex Central and Endpoint...

GitLab Patches Critical Account Takeover and Pipeline Hijacking Vulnerabilities

CVE News

GitLab Patches Critical Account Takeover and Pipeline Hijacking Vulnerabilities

GitLab has released security updates addressing multiple high-severity vulnerabilities in its DevSecOps platform, including flaws that could...

New Secure Boot Bypass (CVE-2025-3052) Enables Bootkit Malware Installation

CVE News

New Secure Boot Bypass (CVE-2025-3052) Enables Bootkit Malware Installation

A newly disclosed Secure Boot vulnerability, tracked as CVE-2025-3052, allows attackers to disable security protections on PCs...

Microsoft June 2025 Patch Tuesday: Critical Zero-Day Fixes and 66 Flaws Addressed

CVE News

Microsoft June 2025 Patch Tuesday: Critical Zero-Day Fixes and 66 Flaws Addressed

Microsoft’s June 2025 Patch Tuesday has arrived, delivering security updates for 66 vulnerabilities, including one actively exploited...

Windows 11 KB5060842 and KB5060999 Updates: Security Fixes and Enterprise Implications

News

Windows 11 KB5060842 and KB5060999 Updates: Security Fixes and Enterprise Implications

Microsoft has released cumulative updates KB5060842 and KB5060999 for Windows 11 versions 24H2 and 23H2, addressing 66...

Posts pagination

Previous 1 2 3 4 5 … 11 Next

Critical Vulnerabilities

Gigabyte Motherboard UEFI Vulnerabilities Expose Systems to Persistent Bootkit Malware

Critical Pre-Auth RCE Exploit Released for Fortinet FortiWeb: Patch Immediately

NVIDIA’s GDDR6 Rowhammer Mitigation Guidance: Technical Analysis and Industry Implications

OpenVSX Zero-Day Vulnerability: How a Single Flaw Threatened Millions of Developer Environments

PerfektBlue Bluetooth Vulnerabilities Expose Critical Automotive Systems to Remote Attacks

Windows 11 KB5062553 & KB5062552 Updates: Security Fixes and Enterprise Impact

Microsoft’s July 2025 Patch Tuesday Addresses 137 Vulnerabilities Including Critical WebDAV Zero-Day

Brother Printer Vulnerability: Unpatchable Default Admin Password Flaw Affects 689 Models

Cisco ISE and ISE-PIC Vulnerabilities: Critical RCE Flaws Require Immediate Patching

Windows 10 KB5061087 Update: Critical Fixes for Start Menu and Printer Issues

Critical Privilege Escalation Vulnerability in WordPress Motors Theme Actively Exploited

CISA Warns of Actively Exploited Linux Kernel Vulnerability (CVE-2024-1086)

Critical Linux udisks Vulnerability Allows Local Privilege Escalation to Root

Critical RCE Vulnerability in Veeam Backup & Replication (CVE-2025-23120): Analysis and Mitigation

Sitecore XP Exploit Chain: Hardcoded Credentials Lead to Unauthenticated RCE

Trend Micro Patches Critical RCE and Authentication Bypass Vulnerabilities in Apex Central and Endpoint Encryption

GitLab Patches Critical Account Takeover and Pipeline Hijacking Vulnerabilities

New Secure Boot Bypass (CVE-2025-3052) Enables Bootkit Malware Installation

Microsoft June 2025 Patch Tuesday: Critical Zero-Day Fixes and 66 Flaws Addressed

Windows 11 KB5060842 and KB5060999 Updates: Security Fixes and Enterprise Implications

You may have missed

Adobe Analytics Data Leak: Architectural Failure Exposes Cross-Tenant Data

Snapchat’s Shift to Paid Storage: A Technical Analysis of Cloud Service Monetization

Google’s Developer Registration Policy Threatens F-Droid’s Existence

Google Drive for Desktop Deploys AI-Powered Ransomware Detection and Recovery