Vulnerability

Grafana Labs disclosed a critical vulnerability (CVE-2025-41115) in its Grafana Enterprise product, enabling privilege escalation or impersonation of administrators when…

A critical security vulnerability was discovered in GoSign Desktop, a widely used electronic signature solution by Tinexta InfoCert. The flaws…

The Louvre Museum in Paris faced a digital security lapse exposed by a physical burglary, where thieves stole eight jewelry…

Microsoft disclosed CVE-2025-59499, a critical SQL injection vulnerability in SQL Server that enables authenticated attackers to escalate privileges remotely over…

The Louvre Museum in Paris suffered a $100 million jewel heist due to severe cybersecurity and physical security lapses. Investigations…

Tenable Research uncovered seven critical security flaws in OpenAI’s ChatGPT (including GPT-4o and GPT-5), enabling attackers to steal private…

Threat actors are actively exploiting CVE-2025-54236 (CVSS 9.1), a critical improper input validation vulnerability in Adobe Commerce and Magento…

Maryland launched a Vulnerability Disclosure Program (VDP) to encourage ethical hackers to report security flaws in state systems before malicious…

A critical vulnerability (CVE-2025-9242, CVSS 9.3) in WatchGuard Firebox network security appliances exposes 75,835+ devices globally, primarily in…

Google’s Vulnerability Rewards Program (VRP) faced inefficiencies due to a flood of low-value bug reports, diverting security team resources…

A critical privilege escalation vulnerability (CVE-2025-10725, CVSS 9.9) was discovered in Red Hat OpenShift AI, a platform for managing…

Google Project Zero researcher Jann Horn uncovered a sophisticated vulnerability in Apple’s macOS and iOS that allows attackers to…