Software supply chain security firm JFrog has disclosed the details of a critical vulnerability affecting a popular React ...

A security vulnerability in Adobe Reader for Android could give an attacker the ability to execute arbitrary code. The Android variety of Adobe Reader reportedly contains a vulnerability that could ...

Microsoft released out-of-band updates to patch the WSUS vulnerability CVE-2025-59287 and exploitation of the flaw was seen just hours later.

Cisco has addressed severe vulnerabilities in the Cisco Nexus Dashboard data center management solution that can let remote attackers execute commands and perform actions with root or Administrator ...

There are a huge number of products available in the modern world that come with network connectivity now, when perhaps they might be better off with out it. Kitchen appliances like refrigerators are ...

TP-Link has released security updates to address four security flaws impacting Omada gateway devices, including two critical bugs that could result in arbitrary code execution. "Attackers may execute ...

Windows Server 2025 is currently vulnerable to a Remote Code Execution exploit and a patch for the issue doesn't seem to be ...

Drupal, Typo3 and Joomla are all impacted by the bug. Multiple content management systems – including Drupal, Joomla and Typo3 – are open to a vulnerability that can lead to arbitrary code execution ...

Cisco has closed a remote code execution vulnerability in its WebEx extension for Chrome, after Project Zero's Tavis Ormandy alerted the networking giant to the issue on Saturday. According to Ormandy ...

OpenOffice.org has shipped a new version of the open-source desktop productivity suite to patch a pair of highly-critical vulnerabilities that could expose users to arbitrary code execution attacks.

Version 3.5.5 of the LibreOffice free personal productivity suite contains fixes for multiple security vulnerabilities that could be exploited to execute arbitrary code with the privileges of the ...

A threat actor called TigerJack is constantly targeting developers with malicious extensions published on Microsoft's Visual Code (VSCode) marketplace and OpenVSX registry to steal cryptocurrency and ...