CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.
Fortinet patched 27 vulnerabilities, including two critical FortiSandbox flaws leading to authentication bypass and code ...
SAP has released 19 new security notes on its April 2026 security patch day, including one that resolves a critical-severity ...
Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...
The government has issued an advisory regarding a critical vulnerability in Fortinet’s FortiClient EMS, which is affecting ...
The US cybersecurity agency added the bug, tracked as CVE-2026-34197, to its Known Exploited Vulnerabilities (KEV) catalog on ...
CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this ...
CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.
Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware.
North Korea's Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results