Vulnerability

A critical security vulnerability has been discovered in the Apache bRPC framework that could allow remote attackers to crash servers…

After scanning all 5.6 million public repositories on GitLab Cloud, a security engineer discovered more than 17,000 exposed…

The ‘node-forge’ package, a pivotal cryptography library for JavaScript, is facing a significant security vulnerability. This flaw could potentially allow…

A newly discovered class of vulnerabilities in Intel processors, termed Branch Predictor Race Conditions (BPRC), allows attackers to systematically extract…

A zero-day use-after-free vulnerability (CVE-2025-37899) was discovered in the Linux kernel’s SMB (Server Message Block) implementation, specifically within the…

The MITRE Corporation faced a critical funding crisis for its CVE (Common Vulnerabilities and Exposures) Program, a cornerstone of global…

ASUS disclosed a critical security vulnerability (CVE-2025-59373, CVSS 8.5) in its MyASUS application, specifically within the ASUS System Control…

Palo Alto Networks disclosed a reflected cross-site scripting (XSS) vulnerability (CVE-2025-0133) in its GlobalProtect gateway and portal (PAN-OS software). The…

Dartmouth reported a data breach involving its Oracle eBusiness Suite (EBS) software, where an unauthorized actor exploited a vulnerability to…

The Minnesota Department of Human Services (DHS) failed to conduct mandatory security reviews of its Supplemental Nutrition Assistance Program (SNAP)…

High-severity command injection vulnerabilities (CVE-2025-13207 and CVE-2024-24481, CVSS 8.8) have been discovered in Tenda’s N300 Wi-Fi 4G LTE…

Critical Vulnerabilities in Chainlit Framework Expose AI Systems to Data Theft and Server Compromise Researchers at Zafran Labs have uncovered…