Vulnerability

Cisco Systems has identified multiple remote code execution vulnerabilities in its Identity Services Engine (ISE) that are being actively exploited.…

A significant vulnerability in ETQ Reliance quality management software allows attackers to gain full administrative access by simply adding a…

A critical vulnerability in HPE Aruba Networking Instant On Access Points allows attackers to bypass device authentication mechanisms completely. The…

A critical remote code execution vulnerability (CVE-2025-34300) has been discovered in Lighthouse Studio, a survey software platform developed by Sawtooth…

Researchers have observed multiple exploitation attempts for the CVE-2025-48927 vulnerability in the TeleMessage SGNL app, which allows retrieving usernames, passwords,…

CrushFTP is warning about a zero-day vulnerability (CVE-2025-54309) that allows attackers to gain administrative access via the web interface on…

Two proof-of-concept (PoC) exploits made public late last week for a critical SQL command injection vulnerability in Fortinet’s FortiWeb…

Hackers exploited a critical vulnerability in Wing FTP Server, a widely used file transfer solution, just one day after the…

A researcher discovered a bug in the Meta AI chatbot that allowed unauthorized access to private user conversations. The bug…

A critical vulnerability (CVE-2025-20337) in Cisco's Identity Services Engine (ISE) allows an unauthenticated attacker to store malicious files,…

A critical vulnerability, dubbed 'CitrixBleed 2' and tracked as CVE-2025-5777, was actively exploited nearly two weeks before proof-of-concept…

Ford is recalling 694,271 Bronco Sport and Escape SUVs due to a faulty fuel injector that can leak, posing…