Microsoft
public
–
3 min read
Zscaler ThwartLabz uncovered **CVE-2025-50165**, a critical **Remote Code Execution (RCE)** vulnerability in the **Windows Graphics Component** (CVSS 9.8), affecting…
Meta (WhatsApp)
public
–
2 min read
A critical vulnerability in WhatsApp’s infrastructure exposed metadata of over **3.5 billion users globally**, including phone numbers, approximate…
Fortinet
public
–
2 min read
Fortinet disclosed **CVE-2025-58034**, a **command injection zero-day vulnerability** in its **FortiWeb firewall products**, actively exploited in the wild. The flaw…
public
–
2 min read
Google recently addressed a critical zero-day vulnerability (CVE-2025-13223) in its Chrome browser’s V8 JavaScript engine, marking the third such…
Fortinet
public
–
3 min read
The Cybersecurity and Infrastructure Security Agency (CISA) identified a critical **path-traversal vulnerability (CVE-2025-64446)** in Fortinet’s **FortiWeb web application firewall*…
Cisco
public
–
2 min read
A critical security vulnerability (CVE-2025-20341) was discovered in the **Cisco Catalyst Center Virtual Appliance** running on **VMware ESXi**, allowing authenticated…
Fastly
public
–
3 min read
Fastly, a leading edge cloud computing and content delivery network (CDN) provider, was identified as one of the major vendors…
Meta (WhatsApp)
public
–
3 min read
Meta’s WhatsApp platform was exploited via a zero-click vulnerability (CVE-2025-55177) in its device synchronization process, combined with a flaw…
Docker
public
–
3 min read
Docker was affected by CVE-2025-62725, a critical path traversal vulnerability in Docker Compose (fixed in v2.40.2) that allowed…
Astral
public
–
4 min read
A critical vulnerability named TARmageddon (CVE-2025-62518) was discovered in the async-tar Rust library and its forks, including tokio-tar, which is…
Adobe (Adobe Commerce / Magento)
public
–
3 min read
Hackers are actively exploiting CVE-2025-54236 (SessionReaper), a critical improper input validation vulnerability in Adobe Commerce (formerly Magento). The flaw allows…
LANSCOPE
public
–
3 min read
A critical remote code execution (RCE) vulnerability (CVE-2025-61932, CVSS 9.8) was discovered in LANSCOPE Endpoint Manager (On-Premise Edition, v9.…