VULNERABILITY 23
- Microsoft Fix Targets Attacks on SharePoint Zero-Day
- Flaw in Signal App Clone Could Leak Passwords — GreyNoise Identifies Active Reconnaissance and Exploit Attempts
- Zyxel security advisory for path traversal vulnerability in APs
- eSIM Vulnerability in Kigen's eUICC Cards Exposes Billions of IoT Devices to Malicious Attacks
- Critical RCE Vulnerability in mcp-remote CVE-2025-6514 Threatens LLM Clients
- Count(er) Strike – Data Inference Vulnerability in ServiceNow
- Critical Sudo bugs expose major Linux distros to local Root exploits
- Cl0p cybercrime gang's data exfiltration tool found vulnerable to RCE attacks
- Critical Vulnerability in Microsens Devices Exposes Systems to Hackers
- Zero-day Bluetooth gap turns millions of headphones into listening stations
- Gogs Remote Command Execution Vulnerability (CVE-2024-56731)
- Cisco ISE Vulnerability Allows Remote Attackers to Execute Malicious Commands
- Realtek Bluetooth Flaw Allows Attackers to Launch DoS Attacks During Pairing
- Why a Classic MCP Server Vulnerability Can Undermine Your Entire AI Agent
- Don't panic, but it's only a matter of time before critical 'CitrixBleed 2' is under attack
- Acer Control Center Flaw Lets Attackers Run Malicious Code as Elevated User
- Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction
- EchoLeak Zero-Click AI Attack in Microsoft Copilot Exposes Company Data
- Over 80,000 servers hit as Roundcube RCE bug gets rapidly exploited
- NTLM reflection is dead, long live NTLM reflection! – An in-depth analysis of CVE-2025-33073
- iMessage Zero-Click Attacks Suspected in Targeting of High-Value Individuals
- Qualcomm fixes three Adreno GPU zero-days exploited in attacks
- Bypassing MTE with CVE-2025-0072