Severe MongoDB RCE Vulnerability Tracked as CVE-2025-14847
MongoDB has issued an urgent security warning asking administrators and IT teams to immediately patch a newly discovered, high-severity vulnerability […]
CVE-2025-68613: Critical n8n Bug Enables Arbitrary Code Execution
A critical security flaw in n8n, a popular workflow automation platform, has been disclosed, putting thousands of organizations at serious
HPE OneView Hit by CVE-2025-37164 With CVSS 10.0 Severity
Hewlett Packard Enterprise (HPE) has fixed a critical security vulnerability in its HPE OneView software that could allow attackers to
Cisco AsyncOS Zero-Day Actively Exploited in Email Security Appliances
Cisco has issued a serious warning after discovering active cyberattacks exploiting a zero-day vulnerability in its AsyncOS software, which powers
Attackers Target Fortinet FortiGate Via SAML SSO Authentication Bypass
Fortinet FortiGate devices are currently under active cyberattacks, with threat actors exploiting newly disclosed critical vulnerabilities related to SAML Single
Apple Fixes Actively Exploited WebKit Zero-Day Flaws Across iOS and macOS
Apple has released critical security updates for its entire ecosystem after confirming that two serious WebKit vulnerabilities were actively exploited
Gogs Zero-Day Exploited: 700+ Servers Hacked Worldwide
A newly discovered zero-day vulnerability in Gogs, a popular self-hosted Git service, is being actively exploited in the wild, putting
Microsoft Patch Tuesday: 56 Bugs Fixed, Including Two Zero-Days
Microsoft has released its final security update of 2025, delivering patches for 56 security flaws across the Windows ecosystem. This
CVE-2025-6389: Sneeit RCE Exploited as Frost Botnet Uses CVE-2025-2611
A new wave of cyberattacks is hitting WordPress websites and ICTBroadcast servers after two major security flaws were publicly exposed.
Apache Tika Hit by Critical XXE Bug CVE-2025-66516
A major security warning has been issued for Apache Tika, a widely used tool for content detection and file parsing.
Microsoft Finally Patches High-Risk LNK File Vulnerability
Microsoft has quietly fixed a long-standing security flaw in Windows that was actively exploited by multiple threat groups for several
India Mandates Sanchar Saathi App on All New Smartphones
In a major move to strengthen telecom security, the Government of India has ordered all mobile phone manufacturers to pre-install
OpenPLC ScadaBR XSS Exploit CVE-2021-26829: CISA Issues Warning
CISA has added a newly confirmed, actively exploited vulnerability in OpenPLC ScadaBR to its Known Exploited Vulnerabilities (KEV) catalog. This
Microsoft Strengthens Entra ID Login Security with 2026 CSP Rules
Microsoft has announced a major security upgrade coming to Microsoft Entra ID sign-ins in 2026. The company will update its
ASUS Fixes Critical AiCloud Router Flaw CVE-2025-59366
ASUS has released an urgent security update to fix nine major vulnerabilities, including a critical authentication bypass flaw that affects