Cisco
public
–
2 min read
A critical security vulnerability (CVE-2025-20341) was discovered in the **Cisco Catalyst Center Virtual Appliance** running on **VMware ESXi**, allowing authenticated…
Fastly
public
–
3 min read
Fastly, a leading edge cloud computing and content delivery network (CDN) provider, was identified as one of the major vendors…
Meta (WhatsApp)
public
–
3 min read
Meta’s WhatsApp platform was exploited via a zero-click vulnerability (CVE-2025-55177) in its device synchronization process, combined with a flaw…
Docker
public
–
3 min read
Docker was affected by CVE-2025-62725, a critical path traversal vulnerability in Docker Compose (fixed in v2.40.2) that allowed…
Astral
public
–
4 min read
A critical vulnerability named TARmageddon (CVE-2025-62518) was discovered in the async-tar Rust library and its forks, including tokio-tar, which is…
Adobe (Adobe Commerce / Magento)
public
–
3 min read
Hackers are actively exploiting CVE-2025-54236 (SessionReaper), a critical improper input validation vulnerability in Adobe Commerce (formerly Magento). The flaw allows…
LANSCOPE
public
–
3 min read
A critical remote code execution (RCE) vulnerability (CVE-2025-61932, CVSS 9.8) was discovered in LANSCOPE Endpoint Manager (On-Premise Edition, v9.…
Adobe
public
–
3 min read
Adobe is facing active exploitation of a critical vulnerability (CVE-2025-54253) in its Adobe Experience Manager (AEM) Forms on JEE (versions…
Microsoft
public
–
3 min read
The Cybersecurity and Infrastructure Security Agency (CISA) identified CVE-2025-59230, a critical privilege escalation vulnerability in Windows Remote Access Connection Manager,…
SAP
public
–
3 min read
SAP addressed a critical insecure deserialization vulnerability (CVE-2025-42944, CVSS 10.0) in its SAP NetWeaver platform, allowing unauthenticated attackers to…
Oracle
public
–
3 min read
Oracle issued an emergency security update to patch a critical information disclosure vulnerability (CVE-2025-61884, CVSS 7.5) in its E-Business…
OpenSSH (OpenBSD Project)
public
–
3 min read
A critical vulnerability (CVE-2025-61984) in OpenSSH’s ProxyCommand feature allows remote attackers to execute arbitrary code on client systems by…