A maximum-severity privilege escalation vulnerability in a core web development framework allows attackers to bypass security boundaries and execute code […]
Microsoft releases emergency fix for critical ASP.NET Core privilege escalation flaw Read More »
A critical remote code execution vulnerability has been uncovered in the widely used protobuf.js library. An attacker can exploit this
Critical protobuf.js vulnerability enables arbitrary code execution Read More »
CISA has issued an emergency warning regarding the ongoing fallout from the supply chain compromise affecting the Axios npm package.
CISA warns of Axios supply chain compromise delivering remote access trojans Read More »
A cluster of 22 high-severity vulnerabilities has been identified in industrial serial-to-IP converters used to bridge legacy applications with modern
BRIDGE:BREAK flaws expose 20,000 industrial serial-to-IP converters Read More »
Unauthenticated attackers are rampantly exploiting a critical SQL injection flaw in endpoint management servers to execute unauthorized commands. The volume
Fortinet FortiClient EMS SQL injection exploitation surges following KEV deadline Read More »
Attackers are industrializing the exploitation of a publicly leaked privilege escalation flaw in the Windows security subsystem to gain SYSTEM-level
Active exploitation of BlueHammer Windows Defender privilege escalation flaw surging Read More »
An unauthenticated remote code execution vulnerability in the core Windows networking stack is being exploited to compromise VPN gateways and
Critical Windows IKEv2 remote code execution zero-day added to CISA KEV Read More »
A critical supply chain breach has impacted a major cloud development platform following the compromise of an employee Google Workspace
Vercel confirms internal breach linked to compromised AI tool and ShinyHunters extortion Read More »
Attackers are industrializing the exploitation of a memory overread flaw to hijack enterprise sessions and bypass multi-factor authentication. This vulnerability
Active exploitation of Citrix NetScaler memory disclosure flaw surging globally Read More »
A critical prototype pollution vulnerability in the world most popular PDF reader was weaponized months before its public disclosure. This
Adobe Acrobat emergency update addresses prototype pollution zero-day Read More »
