CVE/vulnerability

IBM Aspera Faspex Flaw Allows Injection of Malicious JavaScript in Web UIIBM Aspera Faspex Flaw Allows Injection of Malicious JavaScript in Web UI

IBM Aspera Faspex Flaw Allows Injection of Malicious JavaScript in Web UI

A significant security vulnerability has been identified in IBM Aspera Faspex 5, a popular file exchange solution. The flaw, designated…

2 days ago
Chinese APT Group Targets Ivanti VPN Vulnerabilities to Breach NetworksChinese APT Group Targets Ivanti VPN Vulnerabilities to Breach Networks

Chinese APT Group Targets Ivanti VPN Vulnerabilities to Breach Networks

In a concerning report from cybersecurity firm TeamT5, it has been revealed that a Chinese Advanced Persistent Threat (APT) group…

2 days ago
CISA Issues 10 ICS Advisories Addressing Critical Vulnerabilities and ExploitsCISA Issues 10 ICS Advisories Addressing Critical Vulnerabilities and Exploits

CISA Issues 10 ICS Advisories Addressing Critical Vulnerabilities and Exploits

The Cybersecurity and Infrastructure Security Agency (CISA) has issued ten new Industrial Control Systems (ICS) advisories to address critical vulnerabilities…

5 days ago
AMD CPU Signature Verification Vulnerability Enables Unauthorized Microcode ExecutionAMD CPU Signature Verification Vulnerability Enables Unauthorized Microcode Execution

AMD CPU Signature Verification Vulnerability Enables Unauthorized Microcode Execution

A vulnerability in AMD CPUs has been uncovered, enabling attackers with administrative privileges to bypass microcode signature verification and execute…

5 days ago
Ivanti 0-Day RCE Flaw Exploitation Details RevealedIvanti 0-Day RCE Flaw Exploitation Details Revealed

Ivanti 0-Day RCE Flaw Exploitation Details Revealed

A critical unauthenticated Remote Code Execution (RCE) vulnerability, CVE-2025-22457, has been disclosed by Ivanti, sparking concerns across the cybersecurity industry. The flaw, which…

5 days ago
Jenkins Docker Vulnerability Allows Hackers to Hijack Network TrafficJenkins Docker Vulnerability Allows Hackers to Hijack Network Traffic

Jenkins Docker Vulnerability Allows Hackers to Hijack Network Traffic

A newly disclosed vulnerability affecting Jenkins Docker images has raised serious concerns about network security. The vulnerability, stemming from the…

5 days ago
Dell Alerts Users to Critical PowerScale OneFS Flaws Enabling Account TakeoverDell Alerts Users to Critical PowerScale OneFS Flaws Enabling Account Takeover

Dell Alerts Users to Critical PowerScale OneFS Flaws Enabling Account Takeover

Dell Technologies has issued an urgent security advisory to its users, warning of several critical vulnerabilities in its PowerScale OneFS…

6 days ago
SonicWall Patches Multiple Vulnerabilities in NetExtender Windows ClientSonicWall Patches Multiple Vulnerabilities in NetExtender Windows Client

SonicWall Patches Multiple Vulnerabilities in NetExtender Windows Client

SonicWall has issued a critical alert concerning multiple vulnerabilities discovered in its NetExtender Windows client. These vulnerabilities, identified via several…

6 days ago
Langflow AI Builder Vulnerability Allows Remote Server Takeover by AttackersLangflow AI Builder Vulnerability Allows Remote Server Takeover by Attackers

Langflow AI Builder Vulnerability Allows Remote Server Takeover by Attackers

A critical security vulnerability has been discovered in the Langflow AI Builder, a popular tool for creating agentic AI workflows.…

6 days ago
TP-Link Smart Hub Flaw Exposes Users’ Wi-Fi CredentialsTP-Link Smart Hub Flaw Exposes Users’ Wi-Fi Credentials

TP-Link Smart Hub Flaw Exposes Users’ Wi-Fi Credentials

A critical vulnerability has been discovered in TP-Link’s Smart Hub, potentially exposing users’ Wi-Fi credentials to malicious actors. This flaw…

6 days ago
Show more Posts
Show previous Posts