Coverage
Vulnerabilities
748 articles on vulnerability disclosures and exploits
Advertisement
PHP 8.1 End-of-Life: Security Risks and Upgrade Path Analysis
PHP 8.1 has reached its end-of-life status. Learn about the security implications of running unsupported software and the technical steps for remediation.
Quest KACE SMA CVE-2025-32975: Potential Exploitation in Education
Quest KACE Systems Management Appliance (SMA) faces potential active exploitation via CVE-2025-32975, primarily targeting the education sector. Patch now.
CVE-2026-21992: Oracle Identity Manager Unauthenticated RCE Patch
Oracle addresses critical vulnerability CVE-2026-21992 in Identity Manager and Web Services Manager allowing unauthenticated remote code execution.
Oracle Fusion Middleware RCE Flaw: Immediate Patch Required
A critical unauthenticated remote code execution (RCE) flaw in Oracle Fusion Middleware's Identity and Web Services Managers demands immediate patching.
Oracle Identity Manager RCE via CVE-2026-21992 — Patch Now
Oracle issued an emergency patch for CVE-2026-21992, a critical unauthenticated RCE flaw in Identity Manager and Web Services Manager. Immediate patching is required.
CVE-2026-20131: Cisco FMC/SCC Deserialization Vulnerability Under Active Attack
CISA adds CVE-2026-20131, a critical deserialization vulnerability in Cisco Secure Firewall Management Center (FMC) and Security Cloud Control (SCC), to KEV Catalog due
CISA Adds 5 KEVs: Apple Buffer Overflow, Code Injections Exploited
CISA's KEV Catalog updated with 5 actively exploited vulnerabilities impacting Apple products, Craft CMS, and Laravel Livewire. Immediate patching is critical.
Interlock Ransomware Targets Cisco Firewalls via CVE-2024-20481
Interlock ransomware operators exploited a critical Cisco ASA vulnerability before public disclosure. Learn how to detect and mitigate these targeted attacks.
Android Security Safeguards and UK Cyber Reporting Mandates
Analysis of new Android live threat detection features, the Operation Alice takedown, and updated UK cybersecurity reporting regulations for 2024.
CVE-2024-20481: Critical Cisco FMC RCE Exploited in the Wild
CISA mandates federal agencies patch CVE-2024-20481, a 9.8 CVSS RCE vulnerability in Cisco Secure Firewall Management Center, following active exploitation.
CVE-2026-33017: Critical Langflow RCE Exploited within 20 Hours
CVE-2026-33017 is a critical RCE vulnerability in Langflow currently under active exploitation. Learn how to secure your AI orchestration and detect attacks.
KB5079473 Update Breaks Microsoft Account Sign-ins on Windows 11
Microsoft confirms the KB5079473 March update for Windows 11 disrupts sign-ins for Teams and OneDrive. Technical analysis and remediation for affected systems.