Divya

Divya

NVIDIA NeMo Vulnerability Enables Remote ExploitsNVIDIA NeMo Vulnerability Enables Remote Exploits

NVIDIA NeMo Vulnerability Enables Remote Exploits

NVIDIA has issued an urgent security advisory addressing three high-severity vulnerabilities in its NeMo Framework, a platform widely used for…

4 weeks ago
Multiple Cisco Tools at Risk from Erlang/OTP SSH Remote Code Execution FlawMultiple Cisco Tools at Risk from Erlang/OTP SSH Remote Code Execution Flaw

Multiple Cisco Tools at Risk from Erlang/OTP SSH Remote Code Execution Flaw

Cisco has issued a high-severity advisory (cisco-sa-erlang-otp-ssh-xyZZy) warning of a critical remote code execution (RCE) vulnerability in products using Erlang/OTP’s…

4 weeks ago
Commvault RCE Vulnerability Exploited—PoC ReleasedCommvault RCE Vulnerability Exploited—PoC Released

Commvault RCE Vulnerability Exploited—PoC Released

Enterprises and managed service providers globally are now facing urgent security concerns following the disclosure of a major pre-authenticated remote…

4 weeks ago
Zyxel RCE Flaw Lets Attackers Run Commands Without AuthenticationZyxel RCE Flaw Lets Attackers Run Commands Without Authentication

Zyxel RCE Flaw Lets Attackers Run Commands Without Authentication

Security researcher Alessandro Sgreccia (aka "rainpwn") has revealed a set of critical vulnerabilities in Zyxel’s USG FLEX-H firewall series that…

4 weeks ago
Redis DoS Flaw Allows Attackers to Crash Servers or Drain MemoryRedis DoS Flaw Allows Attackers to Crash Servers or Drain Memory

Redis DoS Flaw Allows Attackers to Crash Servers or Drain Memory

A high-severity denial-of-service (DoS) vulnerability in Redis, tracked as CVE-2025-21605, allows unauthenticated attackers to crash servers or exhaust system memory by…

4 weeks ago
GitLab Releases Critical Patch for XSS, DoS, and Account Takeover BugsGitLab Releases Critical Patch for XSS, DoS, and Account Takeover Bugs

GitLab Releases Critical Patch for XSS, DoS, and Account Takeover Bugs

GitLab, a leading DevOps platform, has released a critical security patch impacting both its Community (CE) and Enterprise (EE) editions,…

4 weeks ago
SonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls RemotelySonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls Remotely

SonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls Remotely

SonicWall has issued an urgent advisory (SNWLID-2025-0009) warning of a high-severity vulnerability in its SSLVPN Virtual Office interface that enables…

4 weeks ago
Hackers Use 1000+ IP Addresses to Target Ivanti VPN VulnerabilitiesHackers Use 1000+ IP Addresses to Target Ivanti VPN Vulnerabilities

Hackers Use 1000+ IP Addresses to Target Ivanti VPN Vulnerabilities

A sweeping wave of suspicious online activity is putting organizations on alert as hackers ramp up their efforts to probe…

4 weeks ago
Blue Shield Exposed Health Data of 4.7 Million via Google AdsBlue Shield Exposed Health Data of 4.7 Million via Google Ads

Blue Shield Exposed Health Data of 4.7 Million via Google Ads

Blue Shield of California has disclosed a significant data privacy incident affecting up to 4.7 million members, after discovering that…

4 weeks ago
Microsoft Offers $30,000 Bounties for AI Security FlawsMicrosoft Offers $30,000 Bounties for AI Security Flaws

Microsoft Offers $30,000 Bounties for AI Security Flaws

Microsoft has launched a new bounty program that offers up to $30,000 to security researchers who discover vulnerabilities in its…

4 weeks ago