Microsoft Windows Server Update Service Is Under Attack, What You Need To Know

Windows Server 2025 is currently vulnerable to a Remote Code Execution exploit and a patch for the issue doesn't seem to be ...
InfoWorld

RCE in React Native CLI opens Dev Servers to attacks

The bug exposes the Metro development server to remote attacks, allowing arbitrary OS command execution on developer systems ...
Infosecurity Magazine

New GDI Flaws Could Enable Remote Code Execution in Windows

Flaws in Windows Graphics Device Interface (GDI) have been identified that allow remote code execution and information ...
CSO Online

Cisco fixes critical flaws in Unified Contact Center Express

Vulnerabilities in the contact center solution can result in authentication bypass and remote code execution. The networking company also warned of new attacks on previously patched firewall products.
Bleeping Computer

Over 178K SonicWall firewalls vulnerable to DoS, potential RCE attacks

Security researchers have found over 178,000 SonicWall next-generation firewalls (NGFW) with the management interface exposed online are vulnerable to denial-of-service (DoS) and potential remote code ...
Bleeping Computer

Latest Remote Code Execution news

Microsoft leaked info on a security update for a 'wormable' pre-auth remote code execution vulnerability found in the Server Message Block 3.0 (SMBv3) network communication protocol that reportedly ...
Infosecurity-magazine.com

New Azure Flaw "Super FabriXss" Enables Remote Code Execution Attacks

A new vulnerability has been discovered in Microsoft’s Azure Service Fabric Explorer (SFX) that would enable unauthenticated, remote threat actors to execute code on a container hosted on a Service ...

Microsoft issues emergency Windows server security patch - update now or risk attack

Microsoft has issued an emergency Windows server security patch to fix a critical severity flaw apparently abused in the wild. As part of its most recent Patch Tuesday cumulative update (October 14, ...

Commercial spyware “Landfall” ran rampant on Samsung phones for almost a year

Unit 42 says that Landfall first appeared in July 2024, relying on a software flaw now catalogued as CVE-2025-21042. Samsung ...

WSUS attacks hit 'multiple' orgs as Google and other infosec sleuths ring Redmond’s alarm bell

CVE-2025-59287, which affects Windows Server versions 2012 through 2025, stems from insecure deserialization of untrusted ...
Hackaday

Remote Code Execution On An Oscilloscope

There are a huge number of products available in the modern world that come with network connectivity now, when perhaps they might be better off with out it. Kitchen appliances like refrigerators are ...
CRN

OpenSSL Issues Fix For Remote Code Execution Attacks

OpenSSL is a toolkit that implements Secure Sockets Layer and Transport Layer Security protocols, as well as a full strength, general purpose cryptography library. The vulnerability, which Red Hat ...