Vulnerability

Active Exploitation of Ivanti EPMM Zero-Day Vulnerability in the WildActive Exploitation of Ivanti EPMM Zero-Day Vulnerability in the Wild

Active Exploitation of Ivanti EPMM Zero-Day Vulnerability in the Wild

Security researchers at The Shadowserver Foundation have identified active exploitation attempts targeting a critical zero-day vulnerability in Ivanti's Enterprise Mobility…

3 days ago
Critical Firefox 0-Day Flaws Allow Remote Code ExecutionCritical Firefox 0-Day Flaws Allow Remote Code Execution

Critical Firefox 0-Day Flaws Allow Remote Code Execution

Mozilla has urgently patched two critical 0-day vulnerabilities in its popular web browser Firefox, both of which could allow remote…

3 days ago
GNU C(glibc) Vulnerability Let Attackers Execute Arbitrary Code on Millions of Linux SystemsGNU C(glibc) Vulnerability Let Attackers Execute Arbitrary Code on Millions of Linux Systems

GNU C(glibc) Vulnerability Let Attackers Execute Arbitrary Code on Millions of Linux Systems

Security researchers have disclosed a significant vulnerability in the GNU C Library (glibc), potentially affecting millions of Linux systems worldwide.…

3 days ago
Ivanti Endpoint Manager Vulnerabilities Allow Unauthenticated Remote Code ExecutionIvanti Endpoint Manager Vulnerabilities Allow Unauthenticated Remote Code Execution

Ivanti Endpoint Manager Vulnerabilities Allow Unauthenticated Remote Code Execution

Critical vulnerability chain in Ivanti Endpoint Manager Mobile (EPMM) has exposed enterprise mobile device management systems to pre-authenticated remote code…

6 days ago
Jenkins Released Security Updates – Multiple Vulnerabilities Fixed That Allow Attackers to Exploit CI/CD PipelinesJenkins Released Security Updates – Multiple Vulnerabilities Fixed That Allow Attackers to Exploit CI/CD Pipelines

Jenkins Released Security Updates – Multiple Vulnerabilities Fixed That Allow Attackers to Exploit CI/CD Pipelines

Jenkins, the widely used automation server for CI/CD pipelines, has released a critical security advisory addressing several vulnerabilities in popular…

6 days ago
SonicWall SMA1000 Vulnerability Allow Attackers to Exploit Encoded URLs To Remotely Gain Internal Systems AccessSonicWall SMA1000 Vulnerability Allow Attackers to Exploit Encoded URLs To Remotely Gain Internal Systems Access

SonicWall SMA1000 Vulnerability Allow Attackers to Exploit Encoded URLs To Remotely Gain Internal Systems Access

SonicWall has issued a critical security advisory (SNWLID-2025-0010) for its SMA1000 Appliance Work Place interface, revealing a high-severity Server-Side Request…

6 days ago
CISA Alerts on Five Active Zero-Day Windows Vulnerabilities Being ExploitedCISA Alerts on Five Active Zero-Day Windows Vulnerabilities Being Exploited

CISA Alerts on Five Active Zero-Day Windows Vulnerabilities Being Exploited

Cybersecurity professionals and network defenders, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five newly identified Windows 0-day…

1 week ago
Intruder vs. Acunetix vs. Attaxion: Comparing Vulnerability Management SolutionsIntruder vs. Acunetix vs. Attaxion: Comparing Vulnerability Management Solutions

Intruder vs. Acunetix vs. Attaxion: Comparing Vulnerability Management Solutions

The vulnerability management market is projected to reach US$24.08 billion by 2030, with numerous vendors offering seemingly different solutions to…

1 week ago
CISA Alerts on Active Exploitation of Zero-Day Vulnerability in Multiple Fortinet ProductsCISA Alerts on Active Exploitation of Zero-Day Vulnerability in Multiple Fortinet Products

CISA Alerts on Active Exploitation of Zero-Day Vulnerability in Multiple Fortinet Products

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding five zero-day vulnerabilities affecting multiple Fortinet…

1 week ago
Enisa Launched New European Vulnerability Database to Strengthen CybersecurityEnisa Launched New European Vulnerability Database to Strengthen Cybersecurity

Enisa Launched New European Vulnerability Database to Strengthen Cybersecurity

European Union Agency for Cybersecurity (ENISA) has officially launched the European Vulnerability Database (EUVD), a groundbreaking platform designed to enhance…

1 week ago