Experts expect memory leak vulnerability exploitation once code becomes public.
patchconfiguration-management
CVE-2026-33017 could enable an unauthenticated attacker to execute arbitrary Python code on the server.
Intrusions exploiting the high-severity stored cross-site scripting flaw in Zimbra Collaboration, tracked as CVE-2025-66376, have been launched...
The most severe vulnerability, tracked as CVE-2026-22557, impacts UniFi Network application versions 10.1.85 and earlier.
The Cybersecurity and Infrastructure Security Agency has updated its Known Exploited Vulnerabilities list to include high-severity flaws...
Multiple nation-state threat operations and commercial spyware vendors have leveraged the new DarkSword iOS exploit kit, which...
Attacks exploiting the maximum severity insecure deserialization zero-day vulnerability in Cisco Secure Firewall Management Center software, tracked...
The vulnerability arises from the interaction between snap-confine, which manages secure application environments, and systemd-tmpfiles, responsible for...
The vulnerabilities, discovered by Eclypsium across four different products including GL-iNet Comet RM-1, Angeet/Yeeso ES3 KVM, Sipeed...
The vulnerability enables attackers to extract and misuse ASP.NET machine keys, facilitating unauthorized session authentication.