American IT software company Ivanti warned customers today to patch a newly disclosed vulnerability in its Endpoint Manager ...

A six-month investigation into AI-assisted development tools has uncovered over thirty security vulnerabilities that allow ...

In the remote maintenance software Connectwise ScreenConnect, authenticated attackers can inject malicious code. An update is ...

Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web ...

A critical Ivanti EPM vulnerability could allow unauthenticated attackers to execute arbitrary code remotely with ...

Huntress reports active attacks abusing Gladinet’s fixed cryptographic keys to forge tickets and gain remote code execution ...

Critical RSC flaws in React and Next.js enable unauthenticated remote code execution; users should update to patched versions ...

In the Barracuda Networks Inc. case, a single unauthenticated SOAP request was sufficient to force the application to import ...

Critical security vulnerabilities exist in Barracuda's Service Center RMM, through which attackers can execute arbitrary code ...

SAP released 14 new security notes, including 3 addressing critical vulnerabilities in Solution Manager, Commerce Cloud, and ...

A critical, unauthenticated remote code execution vulnerability known as React2Shell has been added to the Cybersecurity and ...

KB5072033 addresses vulnerabilities across Windows systems and Office applications—including one actively exploited zero-day.