Vulnerability

NVIDIA disclosed and patched a high-severity vulnerability (CVE-2025-23254) in its TensorRT-LLM framework that could allow a local attacker to execute…

A critical sandbox escape vulnerability was discovered in multiple Apple operating systems, tracked as CVE-2025-31191. The flaw resides in the…

A critical integer-overflow flaw in the Vehicle Controller Security (VCSEC) module of Tesla Model 3 vehicles running firmware prior to…

On April 26, 2025, security experts disclosed a critical flaw in Ruby on Rails’ CSRF protection mechanism that effectively nullifies…

Security researchers discovered a critical TOCTOU vulnerability in Node.js’s CI/CD infrastructure that allowed attackers to execute malicious…

BreachForums, a notorious cybercrime marketplace and successor to RaidForums, experienced a sudden outage on April 15, 2025, after law enforcement…

A critical vulnerability in iOS (CVE-2025-24091) allowed any sandboxed application or widget extension to send low-level Darwin notifications that forced…

Samsung acknowledged that certain Galaxy devices running One UI retain clipboard contents—including passwords copied from password managers—in plaintext…

In early 2025, security researchers discovered a critical path traversal vulnerability (CVE-2025-27610) in the Rack::Static middleware, a core component…

SAP NetWeaver Visual Composer recently experienced a cyberattack. Security researchers discovered a critical unrestricted-file-upload vulnerability (CVE-2025-31324) being actively exploited by…

German software giant SAP's widely-used SAP NetWeaver was exploited due to a critical vulnerability in its Visual Composer…

In April 2025, researchers uncovered a critical path traversal vulnerability (CVE-2025-34028) in Commvault Command Center Innovation Release (versions 11.38.…