Archive

All Articles

171 articles · Page 11 of 15
All News Malware Ransomware Breaches Vulnerabilities Nation-State CVEs
CVE
CVE-2025-32432 — Craft CMS Code Injection Vulnerability
Craft CMS contains a code injection vulnerability that allows a remote attacker to execute arbitrary code. Required action: Apply …
CISA KEV · Mar 20, 2026 · CRITICAL
CVE
CVE-2025-54068 — Laravel Livewire Code Injection Vulnerability
Laravel Livewire contain a code injection vulnerability that could allow unauthenticated attackers to achieve remote command execu…
CISA KEV · Mar 20, 2026 · CRITICAL
CVE
CVE-2025-43510 — Apple Multiple Products Improper Locking Vulnerability
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locking vulnerability that could allow a malicious appli…
CISA KEV · Mar 20, 2026 · CRITICAL
CVE
CVE-2025-43520 — Apple Multiple Products Classic Buffer Overflow Vulnerability
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability which could allow a maliciou…
CISA KEV · Mar 20, 2026 · CRITICAL
CVE
CVE-2025-31277 — Apple Multiple Products Buffer Overflow Vulnerability
Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer overflow vulnerability that could allow the process…
CISA KEV · Mar 20, 2026 · CRITICAL
CVE
CVE-2026-20131 — Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability
Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management contain a deseri…
CISA KEV · Mar 19, 2026 · CRITICAL
CVE
CVE-2025-66376 — Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability
Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability in the Classic UI where attackers could abu…
CISA KEV · Mar 18, 2026 · CRITICAL
CVE
CVE-2026-20963 — Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute co…
CISA KEV · Mar 18, 2026 · CRITICAL
CVE
CVE-2025-47813 — Wing FTP Server Information Disclosure Vulnerability
Wing FTP Server contains a generation of error message containing sensitive information vulnerability when using a long value in t…
CISA KEV · Mar 16, 2026 · CRITICAL
CVE
CVE-2026-3910 — Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffer Vulnerability
Google Chromium V8 contains an improper restriction of operations within the bounds of a memory buffer vulnerability that could al…
CISA KEV · Mar 13, 2026 · CRITICAL
CVE
CVE-2026-3909 — Google Skia Out-of-Bounds Write Vulnerability
Google Skia contains an out-of-bounds write vulnerability that could allow a remote attacker to perform out of bounds memory acces…
CISA KEV · Mar 13, 2026 · CRITICAL
CVE
CVE-2025-68613 — n8n Improper Control of Dynamically-Managed Code Resources Vulnerability
n8n contains an improper control of dynamically managed code resources vulnerability in its workflow expression evaluation system …
CISA KEV · Mar 11, 2026 · CRITICAL