Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
Today is Microsoft's April 2026 Patch Tuesday with security updates for 167 flaws, including 2 zero-day vulnerabilities.
Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...
Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.
CERT-In flags multiple vulnerabilities in Google Chrome that could allow remote code execution and data theft, urging users ...
This month's Patch Tuesday includes an actively exploited Office zero-day vulnerability and several critical RCE bugs in ...
The cloud-based Webex service has already been patched, but admins must replace an identity provider certificate in Webex ...
The security problem starts with how cellular modems are built. A phone's baseband is effectively its own operating system, ...
The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...
CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.
Adobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results