Vulnerability

Microsoft’s Patch for Symlink Vulnerability Introduces New Windows Denial-of-Service FlawMicrosoft’s Patch for Symlink Vulnerability Introduces New Windows Denial-of-Service Flaw

Microsoft’s Patch for Symlink Vulnerability Introduces New Windows Denial-of-Service Flaw

Microsoft’s recent attempt to resolve a critical privilege escalation vulnerability has inadvertently introduced a new denial-of-service (DoS) flaw in Windows…

1 week ago
NVIDIA NeMo Vulnerability Enables Remote ExploitsNVIDIA NeMo Vulnerability Enables Remote Exploits

NVIDIA NeMo Vulnerability Enables Remote Exploits

NVIDIA has issued an urgent security advisory addressing three high-severity vulnerabilities in its NeMo Framework, a platform widely used for…

2 weeks ago
Commvault RCE Vulnerability Exploited—PoC ReleasedCommvault RCE Vulnerability Exploited—PoC Released

Commvault RCE Vulnerability Exploited—PoC Released

Enterprises and managed service providers globally are now facing urgent security concerns following the disclosure of a major pre-authenticated remote…

2 weeks ago
GitLab Releases Critical Patch for XSS, DoS, and Account Takeover BugsGitLab Releases Critical Patch for XSS, DoS, and Account Takeover Bugs

GitLab Releases Critical Patch for XSS, DoS, and Account Takeover Bugs

GitLab, a leading DevOps platform, has released a critical security patch impacting both its Community (CE) and Enterprise (EE) editions,…

2 weeks ago
SonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls RemotelySonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls Remotely

SonicWall SSLVPN Flaw Allows Hackers to Crash Firewalls Remotely

SonicWall has issued an urgent advisory (SNWLID-2025-0009) warning of a high-severity vulnerability in its SSLVPN Virtual Office interface that enables…

2 weeks ago
Hackers Use 1000+ IP Addresses to Target Ivanti VPN VulnerabilitiesHackers Use 1000+ IP Addresses to Target Ivanti VPN Vulnerabilities

Hackers Use 1000+ IP Addresses to Target Ivanti VPN Vulnerabilities

A sweeping wave of suspicious online activity is putting organizations on alert as hackers ramp up their efforts to probe…

2 weeks ago
FireEye EDR Vulnerability Allows Attackers to Execute Unauthorized CodeFireEye EDR Vulnerability Allows Attackers to Execute Unauthorized Code

FireEye EDR Vulnerability Allows Attackers to Execute Unauthorized Code

A critical vulnerability (CVE-2025-0618) in FireEye’s Endpoint Detection and Response (EDR) agent has been disclosed, enabling attackers to execute unauthorized…

2 weeks ago
Critical Browser Wallet Vulnerabilities Enable Unauthorized Fund TransfersCritical Browser Wallet Vulnerabilities Enable Unauthorized Fund Transfers

Critical Browser Wallet Vulnerabilities Enable Unauthorized Fund Transfers

Researchers have disclosed a series of alarming vulnerabilities in popular browser-based cryptocurrency wallets that could allow attackers to silently drain…

2 weeks ago
Synology Network File System Vulnerability Allows Unauthorized File AccessSynology Network File System Vulnerability Allows Unauthorized File Access

Synology Network File System Vulnerability Allows Unauthorized File Access

A critical security vulnerability in Synology’s Network File System (NFS) service, tracked as CVE-2025-1021, has been resolved after allowing unauthorized…

2 weeks ago
Zyxel Releases Patches for Privilege Management Vulnerabilities in FirewallsZyxel Releases Patches for Privilege Management Vulnerabilities in Firewalls

Zyxel Releases Patches for Privilege Management Vulnerabilities in Firewalls

Zyxel, a leading provider of secure networking solutions, has released critical security patches to address two privilege management vulnerabilities in…

2 weeks ago