Technology ❯ Cybersecurity ❯ Vulnerabilities

Software Vulnerabilities

Microsoft Security Updates Microsoft Vulnerabilities Fortinet Microsoft SharePoint Microsoft Products Microsoft Windows Vulnerabilities Remote Code Execution n8n Vulnerability Microsoft Exchange Server

3 ARTICLES

20h ago

Cisco Patches Exploited SD‑WAN Manager Zero‑Day

The fix addresses an arbitrary file‑write flaw that attackers used to plant code and gain root on managed SD‑WAN controllers, and agencies have been ordered to remediate quickly.

Stories older than 24h

9 ARTICLES

4d ago

Maximum-Severity Ivanti Sentry Flaw Triggers Rapid Exploitation

6 ARTICLES

6d ago

ServiceNow Fixes API Misconfiguration After Attackers Queried Customer Instances

3 ARTICLES

last wk.

CISA Adds LiteLLM Command‑Injection Flaw to Known Exploited Vulnerabilities List

3 ARTICLES

last wk.

Microsoft Issues Emergency Patches for Two Actively Exploited Defender Zero‑Days

3 ARTICLES

3w ago

Cisco Fixes Critical Secure Workload API Flaw That Can Grant Site Admin Access

8 ARTICLES

3w ago

Microsoft Issues Mitigations for YellowKey BitLocker Bypass

6 ARTICLES

3w ago

Drupal Issues Emergency Patch for PostgreSQL SQL Injection Flaw

5 ARTICLES

4w ago

Hackers Exploit Critical 'Nginx Rift' Bug as Fixes Ship

5 ARTICLES

4w ago

Researcher Releases 'MiniPlasma' Exploit That Gains SYSTEM Access on Fully Patched Windows

6 ARTICLES

4w ago

Microsoft Says Exchange OWA Flaw Is Under Active Attack, Rolls Out Auto Mitigation

20 ARTICLES

4w ago

Microsoft’s May Patch Tuesday Fixes About 137 Flaws With No Zero-Days

7 ARTICLES

last mo.

Ivanti Patches EPMM Zero‑Day Under Active Exploitation as CISA Orders Fix by May 10

13 ARTICLES

last mo.

Critical cPanel/WHM Auth Bypass Patched After Months of Silent Exploits

9 ARTICLES

last mo.

GitHub Patches Critical Git Push RCE as Wiz Warns Most Enterprise Servers Remain Exposed

4 ARTICLES

last mo.

Microsoft Releases Out-of-Band .NET 10.0.7 to Fix Critical ASP.NET Core DataProtection Flaw

5 ARTICLES

2mo ago

CISA Adds ActiveMQ RCE to KEV With April 30 Patch Deadline

Software Vulnerabilities

Cisco Patches Exploited SD‑WAN Manager Zero‑Day

Maximum-Severity Ivanti Sentry Flaw Triggers Rapid Exploitation

ServiceNow Fixes API Misconfiguration After Attackers Queried Customer Instances

CISA Adds LiteLLM Command‑Injection Flaw to Known Exploited Vulnerabilities List

CISA Says SolarWinds Serv-U Flaw Is Being Exploited to Crash Servers

Cisco Patches Critical Unified CM SSRF Flaw After Public PoC Emerges

Critical Zero-Day in Gogs Lets Authenticated Users Run Remote Code

Microsoft Issues Emergency Patches for Two Actively Exploited Defender Zero‑Days

Cisco Fixes Critical Secure Workload API Flaw That Can Grant Site Admin Access

Microsoft Issues Mitigations for YellowKey BitLocker Bypass

Never miss stories about

Software Vulnerabilities

Drupal Issues Emergency Patch for PostgreSQL SQL Injection Flaw

Hackers Exploit Critical 'Nginx Rift' Bug as Fixes Ship

Researcher Releases 'MiniPlasma' Exploit That Gains SYSTEM Access on Fully Patched Windows

Microsoft Says Exchange OWA Flaw Is Under Active Attack, Rolls Out Auto Mitigation

Microsoft’s May Patch Tuesday Fixes About 137 Flaws With No Zero-Days

Ivanti Patches EPMM Zero‑Day Under Active Exploitation as CISA Orders Fix by May 10

Critical cPanel/WHM Auth Bypass Patched After Months of Silent Exploits

GitHub Patches Critical Git Push RCE as Wiz Warns Most Enterprise Servers Remain Exposed

Microsoft Releases Out-of-Band .NET 10.0.7 to Fix Critical ASP.NET Core DataProtection Flaw

CISA Adds ActiveMQ RCE to KEV With April 30 Patch Deadline

Never miss stories about

Software Vulnerabilities