Vulnerability

A severe security vulnerability, tracked as CVE-2025-1087, has been discovered in the widely-used Insomnia API Client developed by Kong. This…

Cisco has identified a critical security vulnerability in its Meraki MX and Z Series devices, which could allow unauthenticated attackers…

Cybersecurity researchers at Noma Security disclosed a critical vulnerability dubbed AgentSmith in LangChain‘s LangSmith platform, specifically affecting its public…

Asana, a work management platform, faced a data exposure due to a logic flaw in its Model Context Protocol (MCP)…

A critical supply chain vulnerability dubbed 'GerriScary' (CVE-2025-1568) was discovered in Google's Gerrit code collaboration platform.…

Veeam has released security updates to fix several vulnerabilities in its Backup & Replication (VBR) software, including a critical remote…

A chain of vulnerabilities in the Sitecore Experience Platform (XP) allows attackers to perform remote code execution (RCE) without authentication.…

A critical authorization bypass vulnerability in ASUS Armoury Crate allows attackers to gain system-level privileges on Windows machines through hard…

A high-severity remote code execution vulnerability has been identified in BeyondTrust’s Remote Support and Privileged Remote Access platforms. The…

Multiple critical security vulnerabilities in Apache Tomcat web servers were discovered, including high-severity flaws enabling denial-of-service (DoS) attacks and a…

A significant spike was observed in exploitation attempts targeting CVE-2023-28771, a critical remote code execution vulnerability affecting Zyxel Internet Key…

Security researchers have uncovered an active cyberattack campaign targeting Langflow servers through CVE-2025-3248, a critical remote code execution vulnerability. This…