Vulnerability

Amazon Web Services has disclosed a critical security vulnerability in its Client VPN software for Windows that could allow attackers…

Two high-severity vulnerabilities in TP-Link VIGI network video recorder (NVR) systems could allow attackers to execute arbitrary commands on affected…

The number of companies and organizations compromised by a security vulnerability in Microsoft Corp.’s SharePoint servers is increasing rapidly,…

A critical security vulnerability in ExpressVPN Windows desktop application exposed users’ real IP addresses when using Remote Desktop Protocol (RDP)…

Cisco Systems has identified multiple remote code execution vulnerabilities in its Identity Services Engine (ISE) that are being actively exploited.…

A significant vulnerability in ETQ Reliance quality management software allows attackers to gain full administrative access by simply adding a…

A critical vulnerability in HPE Aruba Networking Instant On Access Points allows attackers to bypass device authentication mechanisms completely. The…

A critical remote code execution vulnerability (CVE-2025-34300) has been discovered in Lighthouse Studio, a survey software platform developed by Sawtooth…

Zero-Day Cyber Espionage Campaign Targets Microsoft SharePoint Servers A large-scale cyber espionage operation exploiting a previously unknown vulnerability in Microsoft’…

Researchers have observed multiple exploitation attempts for the CVE-2025-48927 vulnerability in the TeleMessage SGNL app, which allows retrieving usernames, passwords,…

CrushFTP is warning about a zero-day vulnerability (CVE-2025-54309) that allows attackers to gain administrative access via the web interface on…

Two proof-of-concept (PoC) exploits made public late last week for a critical SQL command injection vulnerability in Fortinet’s FortiWeb…