Vulnerabilities Archives

SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Artificial Intelligence

Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps

Attackers could abuse Dify's multi-tenant cloud service to read private chats, preview other tenants' documents, and reach internal APIs.

Ionut Arghire55 minutes ago

Mobile & Wireless

Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks

The high-severity use-after-free vulnerability in Samsung's KNOX security framework affected Android-powered Galaxy devices from the S9 through S25.

Kevin Townsend4 hours ago

Vulnerabilities

FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances

Attackers can send crafted media files to execute code in any application that uses FFmpeg’s libavcodec library.

Ionut Arghire5 hours ago

Data Protection

Decades-Old Squid Proxy Flaw ‘Squidbleed’ Can Expose User Data

Squidbleed, discovered with the aid of Claude Mythos Preview, has been described as a Heartbleed-style vulnerability.

Eduard Kovacs1 day ago

Malware & Threats

Organizations Slow to Patch Targeted Microsoft Exchange Vulnerability

Organizations have fallen behind with the patching of a Microsoft Exchange Server vulnerability addressed with Microsoft’s February 2020 Patch Day updates and already targeted...

Ionut ArghireMarch 16, 2020

Vulnerabilities

Slack Vulnerability Allowed Hackers to Hijack Accounts

A researcher earned $6,500 from Slack last year after finding a critical vulnerability that could have been exploited to hijack Slack accounts.Researcher Evan Custodio...

Eduard KovacsMarch 16, 2020

Cloud Security

Many Backdoors Found in Zyxel CloudCNM SecuManager Software

Researchers have discovered 16 types of vulnerabilities, including many backdoors, in Zyxel’s CloudCNM SecuManager network management software. The vendor has confirmed the flaws and...

Eduard KovacsMarch 16, 2020

Vulnerabilities

Flaws in Popup Builder Plugin Impacted Over 100,000 WordPress Sites

More than 100,000 WordPress websites were potentially affected by a series of vulnerabilities recently discovered and addressed in the Popup Builder plugin.

Ionut ArghireMarch 13, 2020

Vulnerabilities

Critical Flaw in VMware Workstation, Fusion Allows Code Execution on Host From Guest

VMware has patched three serious vulnerabilities in its products, including a critical flaw in Workstation and Fusion that can be exploited to execute arbitrary...

Eduard KovacsMarch 13, 2020

Malware & Threats

Out-of-Band Windows Updates Patch Wormable SMB Vulnerability

Microsoft has released out-of-band updates for Windows to patch a critical remote code execution vulnerability in Server Message Block 3.0 (SMBv3) that has been...

Eduard KovacsMarch 12, 2020

ICS/OT

Several Vulnerabilities Expose Phoenix Contact Industrial 4G Routers to Attacks

Several potentially serious vulnerabilities have been discovered in some of the industrial 4G routers made by Phoenix Contact, a Germany-based provider of industrial automation,...

Eduard KovacsMarch 12, 2020

Vulnerabilities

Vulnerability Prompts Avast to Disable Emulator Used by Antivirus

Avast this week disabled a JavaScript interpreter that is part of its antivirus product, after a security researcher discovered a vulnerability that could potentially...

Ionut ArghireMarch 12, 2020

Cloud Security

Google Offering Higher Bonuses for Cloud Platform Vulnerabilities

Google announced on Wednesday that it’s prepared to pay out an extra $313,337 for interesting Cloud Platform vulnerabilities submitted in 2020.

Eduard KovacsMarch 12, 2020

Vulnerabilities

Intel Patches 27 Vulnerabilities Across Product Portfolio

Intel this week released patches for more than two dozen vulnerabilities impacting graphics drivers, FPGA, processors, NUC, BlueZ, and other products.

Ionut ArghireMarch 11, 2020

Vulnerabilities

Critical Vulnerabilities in SAP Solution Manager Expose Companies to Attacks

SAP on Tuesday released 16 security notes and two updates to previously released patches as part of its March 2020 Security Patch Day, with...

Ionut ArghireMarch 11, 2020

ICS/OT

Tens of Vulnerabilities Expose WAGO Controllers, HMI Panels to Attacks

Tens of vulnerabilities discovered by Cisco Talos researchers in WAGO products expose some of the company’s controllers and human-machine interface (HMI) panels to remote...

Eduard KovacsMarch 11, 2020

Application Security

Firefox 74 Patches Vulnerabilities, Disables TLS 1.0 and 1.1

Mozilla this week released Firefox 74 to the stable channel with several security improvements, including patches, a new add-ons policy, improved privacy, and versions...

Ionut ArghireMarch 11, 2020

Vulnerabilities

Avast AntiTrack Flaw Allows MitM Attacks on HTTPS Traffic

A vulnerability in Avast’s anti-tracking solution could allow malicious actors to perform man-in-the-middle (MitM) attacks on HTTPS traffic, a security researcher has discovered.The security...

Ionut ArghireMarch 11, 2020

Vulnerabilities

Microsoft Working on Patches for Wormable SMB Vulnerability

Microsoft is working on patches for a critical remote code execution vulnerability in Server Message Block 3.0 (SMBv3) that exposes systems to “wormable” attacks.

Eduard KovacsMarch 11, 2020

Vulnerabilities

Microsoft Patches 115 Vulnerabilities in Windows, Other Products

Microsoft’s Patch Tuesday updates for March 2020 address 115 vulnerabilities, including 26 critical issues affecting Windows, Word, Dynamics Business Central, and the company’s web...

Eduard KovacsMarch 11, 2020

Vulnerabilities

Facebook Awards $55,000 for Flaw That Could Lead to Account Hijacking

A researcher has earned $55,000 from Facebook for reporting a serious vulnerability that could have been exploited by hackers to steal access tokens and...

Eduard KovacsMarch 10, 2020

Cloud Security

Load Value Injection: Intel CPUs Vulnerable to Reverse Meltdown Attack

Many processors made by Intel are vulnerable to a newly disclosed type of attack named Load Value Injection (LVI), but the chip maker has...

Eduard KovacsMarch 10, 2020

Cybercrime

Attacks Targeting Recent Microsoft Exchange Flaw Ramping Up

Multiple threat actors are already targeting Microsoft Exchange servers in an attempt to exploit a vulnerability fixed by Microsoft with its February 2020 Patch...

Ionut ArghireMarch 10, 2020

Cybercrime

Hackers Exploiting Recently Patched ManageEngine Desktop Central Vulnerability

A recently disclosed vulnerability affecting Zoho’s ManageEngine Desktop Central endpoint management solution is already being exploited in attacks.

Eduard KovacsMarch 10, 2020

Page 210 of 425« First ‹ Previous 206 207 208 209210211 212 213 214 Next ›Last »

Webinar: How Modern Breaches Bypass MFA and Evade Detection

June 17, 2026

Today’s attackers are no longer breaking in — they’re logging in. Join this live webinar as we break down the modern identity attack chain and examine how recent breaches exploited weaknesses in authentication, identity verification, and access management processes.

Webinar: Modern Exposure Validation in the AI Era

June 24, 2026

AI has accelerated both sides of the fight. Adversaries are weaponizing vulnerabilities faster, while defenders are racing to ship detections and configurations. Join this live webinar as we explore how to prove your controls actually hold against new threats, map your security maturity, and unite breach simulation with automated pentesting into a single, coordinated program.

SECURITYWEEK NETWORK:

ICS:

Artificial Intelligence

Data Exposure Flaws Threaten Dify AI Platform Used by 1 Million Apps

Mobile & Wireless

Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks

Vulnerabilities

FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances

Data Protection

Decades-Old Squid Proxy Flaw ‘Squidbleed’ Can Expose User Data

Malware & Threats

Organizations Slow to Patch Targeted Microsoft Exchange Vulnerability

Vulnerabilities

Slack Vulnerability Allowed Hackers to Hijack Accounts

Cloud Security

Many Backdoors Found in Zyxel CloudCNM SecuManager Software

Vulnerabilities

Flaws in Popup Builder Plugin Impacted Over 100,000 WordPress Sites

Vulnerabilities

Critical Flaw in VMware Workstation, Fusion Allows Code Execution on Host From Guest

Malware & Threats

Out-of-Band Windows Updates Patch Wormable SMB Vulnerability

ICS/OT

Several Vulnerabilities Expose Phoenix Contact Industrial 4G Routers to Attacks

Vulnerabilities

Vulnerability Prompts Avast to Disable Emulator Used by Antivirus

Cloud Security

Google Offering Higher Bonuses for Cloud Platform Vulnerabilities

Vulnerabilities

Intel Patches 27 Vulnerabilities Across Product Portfolio

Vulnerabilities

Critical Vulnerabilities in SAP Solution Manager Expose Companies to Attacks

ICS/OT

Tens of Vulnerabilities Expose WAGO Controllers, HMI Panels to Attacks

Application Security

Firefox 74 Patches Vulnerabilities, Disables TLS 1.0 and 1.1

Vulnerabilities

Avast AntiTrack Flaw Allows MitM Attacks on HTTPS Traffic

Vulnerabilities

Microsoft Working on Patches for Wormable SMB Vulnerability

Vulnerabilities

Microsoft Patches 115 Vulnerabilities in Windows, Other Products

Vulnerabilities

Facebook Awards $55,000 for Flaw That Could Lead to Account Hijacking

Cloud Security

Load Value Injection: Intel CPUs Vulnerable to Reverse Meltdown Attack

Cybercrime

Attacks Targeting Recent Microsoft Exchange Flaw Ramping Up

Cybercrime

Hackers Exploiting Recently Patched ManageEngine Desktop Central Vulnerability

Daily Briefing Newsletter

Trending

Webinar: How Modern Breaches Bypass MFA and Evade Detection

Webinar: Modern Exposure Validation in the AI Era

People on the move

Expert Insights

What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks

No Exploits Required

After AI Reaches Production: 12 Ways Security Teams Can Take Control

Everybody Is Vibe Coding But Nobody Told the Security Team

The Zero-Knowledge Threat Actor and the End of Responsible Disclosure

Daily Briefing Newsletter