Researchers uncovered two chained vulnerabilities in ShareFile that enabled attackers to seize control without authentication, redirect storage, and execute code remotely. The flaws, now patched, exposed sensitive data and highlight the risks of overlooked cloud security gaps.
Critical vulnerabilities have been detected in GIGABYTE hardware, exposing millions of devices to potential cyber threats. This feature investigates the risks, industry context, and what users can do to protect themselves.
New research reveals two major flaws in libpng, the world’s go-to PNG image library. Attackers can exploit these bugs to crash applications or steal sensitive data with a single malicious image. Patch now to stay safe.
A series of interconnected vulnerabilities in CrewAI let attackers break out of sandboxed Python environments, read sensitive files, and execute code on host machines. Developers are urged to act while fixes are in progress.
BIND 9, the world’s most popular DNS software, faces critical security threats that could allow attackers to bypass controls and crash servers. Discover the risks, technical details, and urgent steps admins must take to secure their networks.
As high-profile vulnerabilities hit platforms like PrestaShop and Spring, Suricata’s maintainers quietly raced to patch their own critical flaws—demonstrating the vital, ongoing work of open-source defenders.
Grafana, a leading analytics platform, recently faced and resolved serious security vulnerabilities. Our investigation reveals how the flaws were found, the risks they posed, and what organizations must do to stay protected.
Freshly discovered vulnerabilities in Zabbix, a cornerstone of IT monitoring, put thousands of organizations at risk. The flaws could hand cybercriminals the keys to critical systems, underscoring the need for vigilance and rapid patching.
A new wave of critical vulnerabilities threatens NVIDIA’s AI and machine learning products, opening the door to remote code execution and denial-of-service attacks. With parallels to recent rapid-fire exploits, organizations must act fast to patch and protect their systems.
The Internet Systems Consortium has confirmed new vulnerabilities in Kea DHCP Server and Bind, sparking urgent security advisories. Experts warn that these flaws could threaten the stability and security of global internet infrastructure if left unpatched.