CVSS

Windows 10 KB5055612 Preview Update Addresses WSL2 GPU Bug and Kernel Security

Blue-Team

Windows 10 KB5055612 Preview Update Addresses WSL2 GPU Bug and Kernel Security

Microsoft has released the optional KB5055612 preview cumulative update for Windows 10 22H2, addressing a critical GPU...

Critical RCE Vulnerability in Commvault Command Center (CVE-2025-34028)

CVE News

Critical RCE Vulnerability in Commvault Command Center (CVE-2025-34028)

A critical remote code execution (RCE) vulnerability, tracked as CVE-2025-34028, has been disclosed in Commvault Command Center...

Apache Web Server SQL Injection Vulnerability (CVE-2025-23176): Technical Analysis and Mitigation

CVE News

Apache Web Server SQL Injection Vulnerability (CVE-2025-23176): Technical Analysis and Mitigation

A newly disclosed SQL injection vulnerability (CVE-2025-23176) in Apache Web Server has been rated with a CVSS...

Critical IBM Hardware Management Console Vulnerability Allows Local Command Execution (CVE-2025-1950)

CVE News

Critical IBM Hardware Management Console Vulnerability Allows Local Command Execution (CVE-2025-1950)

A newly disclosed critical vulnerability in IBM’s Hardware Management Console (HMC) for Power Systems could allow local...

CISA Issues Five Critical ICS Advisories Covering Siemens, Schneider Electric, and ABB Systems

CVE News

CISA Issues Five Critical ICS Advisories Covering Siemens, Schneider Electric, and ABB Systems

The Cybersecurity and Infrastructure Security Agency (CISA) published five Industrial Control Systems (ICS) advisories on April 22,...

Critical Symantec pcAnywhere Remote Code Execution Vulnerability (CVE-2011-3478)

CVE News

Critical Symantec pcAnywhere Remote Code Execution Vulnerability (CVE-2011-3478)

A critical buffer overflow vulnerability in Symantec pcAnywhere, identified as CVE-2011-3478, allows unauthenticated attackers to execute arbitrary...

Rapid7’s Remediation Hub: A Shift from CVE-Centric to Risk-Based Vulnerability Management

Blue-Team

Rapid7’s Remediation Hub: A Shift from CVE-Centric to Risk-Based Vulnerability Management

Traditional vulnerability management often focuses on individual CVEs, leading to fragmented remediation efforts. Rapid7’s Remediation Hub introduces...

ManageWiki SQL Injection Vulnerability (CVE-2025-32956): Analysis and Mitigation

CVE News

ManageWiki SQL Injection Vulnerability (CVE-2025-32956): Analysis and Mitigation

A high-severity SQL injection vulnerability (CVE-2025-32956) has been identified in the ManageWiki MediaWiki extension, affecting versions prior...

Critical Buffer Overflow Vulnerability in H3C GR-3000AX Routers (CVE-2025-3854)

CVE News

Critical Buffer Overflow Vulnerability in H3C GR-3000AX Routers (CVE-2025-3854)

A critical buffer overflow vulnerability (CVE-2025-3854) has been identified in H3C GR-3000AX routers running firmware versions up...

Greenshift WordPress Plugin Vulnerability (CVE-2025-3616): Arbitrary File Upload Analysis

CVE News

Greenshift WordPress Plugin Vulnerability (CVE-2025-3616): Arbitrary File Upload Analysis

A critical vulnerability in the Greenshift WordPress plugin (CVE-2025-3616) allows authenticated attackers to upload arbitrary files, potentially...

Critical RCE Vulnerability in Yi IoT XY-3820 (CVE-2025-29659): Technical Analysis and Mitigation

CVE News

Critical RCE Vulnerability in Yi IoT XY-3820 (CVE-2025-29659): Technical Analysis and Mitigation

A critical remote code execution (RCE) vulnerability, designated as CVE-2025-29659, has been identified in the Yi IoT...

Critical RCE Vulnerability in Yi IoT XY-3820 (CVE-2025-29660): Analysis and Mitigation

CVE News

Critical RCE Vulnerability in Yi IoT XY-3820 (CVE-2025-29660): Analysis and Mitigation

A critical remote code execution (RCE) vulnerability (CVE-2025-29660) has been identified in the Yi IoT XY-3820 firmware...

Microsoft Entra Token Logging Mishap Causes Widespread Account Lockouts: Technical Analysis

News

Microsoft Entra Token Logging Mishap Causes Widespread Account Lockouts: Technical Analysis

Microsoft has confirmed that a recent wave of Entra ID (formerly Azure AD) account lockouts stemmed from...

Soffid Console Java Deserialization Vulnerability (CVE-2025-32408): Technical Analysis and Mitigation

CVE News

Soffid Console Java Deserialization Vulnerability (CVE-2025-32408): Technical Analysis and Mitigation

A newly disclosed vulnerability in Soffid Console (CVE-2025-32408) exposes systems to remote code execution through insecure Java...

Think Router Tk-Rt-Wr135G Authentication Bypass Vulnerability (CVE-2024-55211) Analysis

CVE News

Think Router Tk-Rt-Wr135G Authentication Bypass Vulnerability (CVE-2024-55211) Analysis

A critical authentication bypass vulnerability (CVE-2024-55211) has been identified in Think Router’s Tk-Rt-Wr135G wireless router, posing significant...

Critical SQL Injection Vulnerability in Dietiqa App (CVE-2025-28009): Technical Analysis and Mitigation

CVE News

Critical SQL Injection Vulnerability in Dietiqa App (CVE-2025-28009): Technical Analysis and Mitigation

A critical SQL injection vulnerability (CVE-2025-28009) has been identified in Dietiqa App version 1.0.20, posing significant risks...

CVE-2025-42599: Critical Stack-Based Buffer Overflow in Active! Mail Threatens Remote Code Execution

CVE News

CVE-2025-42599: Critical Stack-Based Buffer Overflow in Active! Mail Threatens Remote Code Execution

A critical vulnerability (CVE-2025-42599) has been identified in Active! Mail 6, exposing systems to remote code execution...

Critical SQL Injection Vulnerability in Pantherius Modal Survey Plugin (CVE-2025-39471)

CVE News

Critical SQL Injection Vulnerability in Pantherius Modal Survey Plugin (CVE-2025-39471)

A critical SQL injection vulnerability (CVE-2025-39471) has been identified in the Pantherius Modal Survey plugin for WordPress,...

Tenda AC15 Router Vulnerability (CVE-2025-3786): Remote Buffer Overflow Exploit Analysis

CVE News

Tenda AC15 Router Vulnerability (CVE-2025-3786): Remote Buffer Overflow Exploit Analysis

A critical buffer overflow vulnerability (CVE-2025-3786) has been identified in Tenda AC15 routers, affecting firmware versions up...

Critical Authentication Bypass in Seclore v3.27.5.0 (CVE-2024-53591)

CVE News

Critical Authentication Bypass in Seclore v3.27.5.0 (CVE-2024-53591)

A critical vulnerability (CVE-2024-53591) has been identified in Seclore v3.27.5.0 that allows attackers to bypass authentication through...

Posts pagination

Previous 1 … 3 4 5 6 7 8 9 10 Next

CVSS

Windows 10 KB5055612 Preview Update Addresses WSL2 GPU Bug and Kernel Security

Critical RCE Vulnerability in Commvault Command Center (CVE-2025-34028)

Apache Web Server SQL Injection Vulnerability (CVE-2025-23176): Technical Analysis and Mitigation

Critical IBM Hardware Management Console Vulnerability Allows Local Command Execution (CVE-2025-1950)

CISA Issues Five Critical ICS Advisories Covering Siemens, Schneider Electric, and ABB Systems

Critical Symantec pcAnywhere Remote Code Execution Vulnerability (CVE-2011-3478)

Rapid7’s Remediation Hub: A Shift from CVE-Centric to Risk-Based Vulnerability Management

ManageWiki SQL Injection Vulnerability (CVE-2025-32956): Analysis and Mitigation

Critical Buffer Overflow Vulnerability in H3C GR-3000AX Routers (CVE-2025-3854)

Greenshift WordPress Plugin Vulnerability (CVE-2025-3616): Arbitrary File Upload Analysis

Critical RCE Vulnerability in Yi IoT XY-3820 (CVE-2025-29659): Technical Analysis and Mitigation

Critical RCE Vulnerability in Yi IoT XY-3820 (CVE-2025-29660): Analysis and Mitigation

Microsoft Entra Token Logging Mishap Causes Widespread Account Lockouts: Technical Analysis

Soffid Console Java Deserialization Vulnerability (CVE-2025-32408): Technical Analysis and Mitigation

Think Router Tk-Rt-Wr135G Authentication Bypass Vulnerability (CVE-2024-55211) Analysis

Critical SQL Injection Vulnerability in Dietiqa App (CVE-2025-28009): Technical Analysis and Mitigation

CVE-2025-42599: Critical Stack-Based Buffer Overflow in Active! Mail Threatens Remote Code Execution

Critical SQL Injection Vulnerability in Pantherius Modal Survey Plugin (CVE-2025-39471)

Tenda AC15 Router Vulnerability (CVE-2025-3786): Remote Buffer Overflow Exploit Analysis

Critical Authentication Bypass in Seclore v3.27.5.0 (CVE-2024-53591)

You may have missed

Russia’s Throttling of Cloudflare: Technical Impact and Security Implications

Livestreamed Child Exploitation: Technical and Legal Implications of a Disturbing Case

UNFI Cyberattack: Supply Chain Disruption and Recovery Analysis

Hawaiian Airlines Cyberattack: IT Systems Compromised, Flight Operations Unaffected