Veeam is warning its customers of two vulnerabilities, of which one is a critical RCE bug, affecting the Service Provider Console (VSPC), a web-based management platform for managed service providers ...

Fortinet patched a critical vulnerability in its FortiClient Enterprise Management Server (EMS) software that can allow attackers to gain remote code execution (RCE) on vulnerable servers. FortiClient ...

For a change, there's little in this month's Patch Tuesday that should cause panic, according to security experts.

Microsoft fixed 60 vulnerabilities in this month’s Patch Tuesday security update round, including just two critical bugs. These both affect Windows Hyper-V. CVE-2024-21407 enables attackers to escape ...

WatchGuard patches critical RCE flaw (CVE‑2025‑14733) in Firebox firewalls, being actively exploited in the wild CISA added it to KEV; federal agencies must patch or stop use by December 26 ...

On Monday, Italian programmer Simone Margaritelli, who goes by the handle @evilsocket, claimed that there was an unauthenticated Remote Code Execution (RCE) with a Common Vulnerability Scoring System ...

WordFence disclosed critical RCE flaw (CVE-2025-6389) in Sneeit Framework plugin, affecting versions ≤8.3 Exploitation allows attackers to create admin accounts, install malicious plugins, and hijack ...

Apple finally has released more details on the mysterious updates the company silently pushed last week for iOS and iPadOS 17.4.1. As it turns out, the updates address a new vulnerability in the ...

IT management software provider SolarWinds has urged customers to immediately patch a critical vulnerability in its Web Help Desk platform. CVE-2024-28986 is a Java deserialization remote code ...