This critical (CVSS 10.0) use-after-free (UAF) vulnerability in Lua scripting could allow authenticated attackers to execute ...

Security researchers at software supply chain company JFrog Ltd. today revealed details of a critical vulnerability in React, ...

Google announced a fresh set of security updates for the Android platform, to address two vulnerabilities in the System component.

Governments and private security sleuths warned that attackers are already exploiting a critical bug in Microsoft Windows ...

Microsoft has released a security update to address a critical remote code execution vulnerability impacting multiple versions of Windows Server Update Services that was not fully eradicated by a ...

Windows Server 2025 is currently vulnerable to a Remote Code Execution exploit and a patch for the issue doesn't seem to be ...

On October 23, 2025, Microsoft issued an out-of-band (OOB) security update for a critical-severity Remote Code Execution (RCE) vulnerability, tracked as CVE-2025-59287.

New Android spyware named Landfall delivered to Samsung device owners through the exploitation of a zero-day tracked as CVE-2025-21042.

The Cybersecurity and Infrastructure Security Agency (CISA) ordered U.S. government agencies to patch a critical-severity Windows Server Update Services (WSUS) vulnerability after adding it to its ...

Critical remote code execution flaw in Windows Server is being exploited in the wild, despite previous updates ...

Microsoft has released an emergency out-of-band security update for Windows Server to address a probable remote code ...

CISA warned today that a critical Ivanti vulnerability that can let threat actors gain remote code execution on vulnerable Endpoint Manager (EPM) appliances is now actively exploited in attacks.