Coverage
Vulnerabilities
748 articles on vulnerability disclosures and exploits
Advertisement
Anthropic Mythos Preview Exploits OS Zero-Days: Addressing the Response Gap
Anthropic restricts Mythos Preview after it autonomously exploits OS zero-days. Learn how to minimize post-alert gaps as breakout times drop to 29 minutes.
CVE-2024-43451: How NTLM Hash Disclosure Impacts Windows Systems
Technical analysis of CVE-2024-43451, a Windows NTLM hash disclosure vulnerability triggered by minimal user interaction. Learn detection and mitigation steps.
Marimo RCE via CVE-2024-52271 — Active Exploitation Mitigation Guide
Critical pre-auth RCE vulnerability in Marimo (CVE-2024-52271) is under active exploitation for credential theft. Update to version 0.9.11 immediately.
CVE-2026-34621: Adobe Reader Zero-Day Exploited for Months Patched
Adobe releases critical updates for CVE-2026-34621, an Acrobat and Reader zero-day used for remote code execution. Patch immediately to prevent exploitation.
Adobe Acrobat Reader RCE via CVE-2026-34621 - Patch Now
Adobe issues emergency patches for CVE-2026-34621 in Acrobat Reader. This critical vulnerability is under active exploitation, allowing remote code execution.
Juniper Junos OS: Critical RCE Vulnerability & Dozens of Patches
Juniper Networks released patches for dozens of Junos OS vulnerabilities, including a critical RCE that allows unauthenticated remote device takeover. Update immediately.
Windows Zero-Day, Stryker Breach, & Mac Stealer Malware: Mitigating Diverse Threats
Analysis of a Windows zero-day, cyberattacks on Stryker and Jones Day, a China supercomputer hack, and new Mac stealer malware.
CISA KEV Remediation Exposes Human-Scale Security Limits
Analysis of 1 billion CISA KEV records by Qualys exposes critical vulnerabilities are often exploited before organizations can patch them, highlighting limits of
CVE-2024-21825: How Attackers Exploit Orthanc DICOM Servers — Patch Now
Critical vulnerabilities in the Orthanc DICOM server, including CVE-2024-21825, could lead to RCE and DoS. Learn how to patch and protect medical imaging systems.
CVE-2026-4436: High-Severity Flaw in GPL Odorizers GPL750
High-severity vulnerability CVE-2026-4436 in GPL Odorizers GPL750 allows remote attackers to manipulate gas odorant levels. Learn how to patch affected systems.
CVE-2025-13926: Critical Flaw in Contemporary Controls BASC 20T
CISA warns of a CVSS 9.8 vulnerability in Contemporary Controls BASControl20 3.1. Attackers can forge packets to reconfigure or delete PLC components.
BlueHammer Zero-Day: Windows Local Privilege Escalation Exploit Risks
Researcher Chaotic Eclipse released the BlueHammer zero-day exploit for Windows, enabling local privilege escalation. Learn how to detect and mitigate it.