Splunk for Windows has a high-severity flaw that lets local users escalate privileges through misconfigured file permissions.

Vendors fix critical flaws across Fortinet, Ivanti, and SAP to prevent authentication bypass and remote code execution.

Microsoft' 2025 Patch Tuesday fixes 57 flaws, including one actively exploited and two publicly disclosed zero-day ...

Apple has released emergency updates to patch two zero-day vulnerabilities that were exploited in an "extremely sophisticated ...

Critical XXE flaw CVE-2025-66516 affects multiple Apache Tika modules, exposing systems and requiring urgent updates.

As defined by the UK National Cyber Security Centre, a vulnerability is "a weakness in an IT system that can be exploited by an attacker to deliver a successful attack. They can occur through flaws, ...

In a “move fast and break things” world, Microsoft Corp.’s GitHub today announced the launch of a new way, using artificial intelligence, to move fast while fixing problems during software development ...

SMBs use INE’s Skill Dive to detect and fix vulnerabilities before attackers strike. Hands-on labs build faster remediation ...

At the end of 2023 and into 2024, a series of vulnerabilities in Ivanti Policy Secure network access control (NAC), Ivanti Connect Secure secure socket layer virtual private network (SSL VPN), and ...

A new analysis predicts that the number of reported vulnerabilities will reach record highs in 2025, continuing the trend of rising cybersecurity risks and increased vulnerability disclosures. The ...

Financial support for the system that tracks publicly disclosed cybersecurity vulnerabilities expires on April 16th. Financial support for the system that tracks publicly disclosed cybersecurity ...

OpenAI’s GPT-4 Can Autonomously Exploit 87% of One-Day Vulnerabilities, Study Finds Your email has been sent Researchers from the University of Illinois Urbana-Champaign found that OpenAI’s GPT-4 is ...