A newly disclosed set of security flaws in the widely used open-source AI gateway LiteLLM could allow a low-privileged user to escalate access to full administrative...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2025-53521, a critical vulnerability affecting F5 BIG-IP Access Policy Manager (APM), to its Known Exploited Vulnerabilities...
Ivanti has released urgent security updates addressing two critical zero-day vulnerabilities in its Endpoint Manager Mobile (EPMM) platform, which have already been exploited in the wild....
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw affecting Digiever DS-2105 Pro network video recorders (NVRs) to its Known Exploited...
Hewlett Packard Enterprise (HPE) has released urgent security patches to address a critical remote code execution (RCE) vulnerability in its OneView IT infrastructure management platform. The...
The global cybersecurity community is facing mounting pressure as the fallout from React2Shell, a critical vulnerability affecting the widely used React framework, continues to expand. Security...
The security community is racing to respond to a newly disclosed, high-severity vulnerability in React that could allow remote attackers to execute arbitrary code without authentication....
An estimated 12,000 Juniper SRX firewalls and EX switches are vulnerable to a fileless remote code execution flaw that attackers can exploit without authentication. In August, Juniper...
Hackers are exploiting two recent MinIO vulnerabilities to breach object storage systems and access private information, execute arbitrary code, and potentially take over servers. MinIO is...
Three critical-severity remote code execution vulnerabilities impact ASUS RT-AX55, RT-AX56U_V2, and RT-AC86U routers, potentially allowing threat actors to hijack devices if security updates are not installed....
Recent Comments