Elastic
public
–
2 min read
A critical vulnerability (CVE-2025-37728) was discovered in Elastic’s **Kibana CrowdStrike Connector**, where insufficient credential isolation in a shared cache…
Redis
public
–
4 min read
Redis disclosed CVE-2025-49844 (RediShell), a critical CVSS 10.0 vulnerability in its in-memory database software, allowing authenticated attackers to exploit…
Unity Technologies
public
–
3 min read
A critical vulnerability (CVE-2025-59489) was disclosed in the Unity engine, the world’s most widely used game development platform, exposing…
Linux Foundation (or any enterprise using vulnerable Sudo versions 1.9.14–1.9.17)
public
–
2 min read
A critical local privilege escalation vulnerability (CVE-2025-32463) in the Sudo binary (versions 1.9.14–1.9.17) exposes enterprises…
QNAP Systems
public
–
3 min read
QNAP Systems disclosed CVE-2025-57714, a critical unquoted search path vulnerability in its NetBak Replicator 4.5.x backup software for…
Johnson Controls
public
–
4 min read
Johnson Controls, a critical infrastructure provider, faced severe exposure of its industrial control systems (ICS) due to unpatched vulnerabilities and…
DrayTek
public
–
2 min read
DrayTek, a manufacturer of networking hardware, disclosed a critical security vulnerability (CVE-2025-10547) in multiple Vigor router models, allowing remote, unauthenticated…
Western Digital
public
–
3 min read
Western Digital disclosed a critical remote code execution (RCE) vulnerability (CVE-2025-30247) in the firmware of its My Cloud NAS devices,…
Internet Systems Consortium (ISC)
public
–
3 min read
A critical DNS cache poisoning vulnerability (CVE-2025-40778, CVSS 8.6) was disclosed in BIND 9, the widely used DNS resolver…
Grafana Labs
public
–
1 min read
More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability that allows executing…
Apple
public
–
1 min read
A zero-click attack leveraging a newly disclosed Messages vulnerability (CVE-2025-43200) has infected the iPhones of two European journalists with Paragon&…
Acer
public
–
1 min read
A severe security vulnerability has been discovered in the Acer Control Center software, which could allow attackers to execute arbitrary…