Apple iPhone users are being urged to review their device settings after security researchers identified several default...
High Risk
With growing concerns about children’s exposure to harmful online content, organizations like UNICEF, the U.S. Department of...
Security researcher Alessandro Sgreccia (aka “rainpwn”) has disclosed critical vulnerabilities in Zyxel’s USG FLEX-H firewall series, enabling...
SonicWall has issued an urgent advisory (SNWLID-2025-0009) regarding a high-severity vulnerability in its SSLVPN Virtual Office interface....
Organizations using Commvault’s backup and recovery software are under immediate threat due to an actively exploited pre-authenticated...
A critical authentication bypass vulnerability (CVE-2023-44752) has been identified in the Apache Student Study Center Desk Management...
A critical vulnerability (CVE-2025-2764) in CarlinKit CPC200-CCPA devices allows network-adjacent attackers to bypass cryptographic signature checks and...
A critical SQL injection vulnerability (CVE-2025-43949) has been identified in MuM MapEdit version 24.2.3, posing significant risk...
A critical vulnerability (CVE-2025-1049) affecting Sonos Era 300 speakers has been disclosed, allowing network-adjacent attackers to execute...
The widely used xrpl.js library, a critical component for interacting with the XRP Ledger, was compromised in...
Attackers are increasingly exploiting older, resurgent vulnerabilities—flaws that were patched years ago but remain unaddressed in many...
Multiple critical vulnerabilities have been identified in the TP-Link VN020 F3v(T) router running firmware version TT_V6.2.1021, exposing...
A critical authentication bypass vulnerability (CVE-2022-40684) affecting Fortinet’s FortiOS, FortiProxy, and FortiSwitchManager has been actively exploited since...
A critical remote code execution vulnerability has been identified in Dell EMC’s Integrated Dell Remote Access Controller...
A critical vulnerability in compop.ca version 3.5.3 has been disclosed, allowing arbitrary code execution due to an...
A critical Remote Code Execution (RCE) vulnerability has been identified in ASUS ASMB8 iKVM firmware versions ≤1.14.51,...
A critical vulnerability in Software AG’s webMethods Integration Server 10.15.0 allows unauthenticated attackers to bypass authentication and...
A critical vulnerability in NagVis 1.9.33, tracked as CVE-2022-46945, allows unauthenticated attackers to read arbitrary files via...
Microsoft has addressed a critical issue causing Remote Desktop Protocol (RDP) sessions to freeze on Windows Server...
A critical supply chain attack has compromised Ripple’s official xrpl.js NPM package, injecting malicious code designed to...
