Threat actors exploited a recently patched remote code execution vulnerability (CVE-2025-20352) in Cisco networking devices ...
"Attackers are leveraging the unauthenticated command injection in ICTBroadcast via the BROADCAST cookie to gain remote code execution," VulnCheck's Jacob Baines said in a Tuesday alert.
Cybersecurity company Imperva, which discovered and reported the problem in July 2025, described CVE-2025-53967 as a "design ...
Gladinet has released security updates for its CentreStack business solution to address a local file inclusion vulnerability ...
Researchers warn of fileless payloads, memory hooks, and a UDP-based C2 controller that complicate detection and remediation.
Two recently discovered security flaws could make 7-Zip a serious risk to data and system security. These bugs had been known ...
Security researchers at Wiz Research have discovered a critical vulnerability in the Redis in-memory database that could ...
Microsoft has released its October 2025 Patch Tuesday updates, addressing 172 security flaws, including six zero-day ...
A 13-year-old critical flaw in Redis servers, rated a perfect 10 out of 10 in severity, can let an authenticated user trigger ...
Medusa ransomware affiliates are among those exploiting a maximum-severity bug in Fortra's GoAnywhere managed file transfer ...
Currently, there is no universal automated test to confirm compromise by this operation. If compromise is suspected, device ...
Hackers are exploiting a flaw allowing them to access without authentication document root folder files in file-sharing and ...