remote code execution Archives

Vulnerabilities

Hackers Exploit Langflow Vulnerability for Remote Code Execution

Disclosed in March, the security defect enables unauthenticated attackers to write files to arbitrary locations on the system.

Ionut Arghire2 days ago

Vulnerabilities

Critical GitHub Vulnerability Exposed Millions of Repositories

The remote code execution flaw CVE-2026-3854 was found to impact GitHub.com and GitHub Enterprise Server.

Eduard KovacsApril 29, 2026

Vulnerabilities

BeyondTrust Patches Critical RCE Vulnerability

Affecting both RS and PRA, the bug can be exploited remotely via crafted requests without authentication.

Ionut ArghireFebruary 10, 2026

Data Protection

High-Severity Remote Code Execution Vulnerability Patched in OpenSSL

A total of 12 vulnerabilities have been fixed in OpenSSL, all discovered by a single cybersecurity firm.

Eduard KovacsJanuary 28, 2026

Vulnerabilities

Vulnerabilities in Xerox Print Orchestration Product Allow Remote Code Execution

Path traversal and XXE injection flaws allowing unauthenticated remote code execution have been patched in Xerox FreeFlow Core.

Eduard KovacsAugust 14, 2025

Vulnerabilities

Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption

Trend Micro patches critical-severity Apex Central and Endpoint Encryption PolicyServer flaws leading to remote code execution.

Ionut ArghireJune 13, 2025

Malware & Threats

Exploit Code for Apache Tomcat RCE Vulnerability Published on Chinese Forum

Exploits swirling for remote code execution vulnerability (CVE-2025-24813) in open-source Apache Tomcat web server.

Ryan NaraineMarch 17, 2025

Malware & Threats

Microsoft Flags Six Active Zero-Days, Patches 57 Flaws: Patch Tuesday

Redmond ships major security updates with warnings that a half-dozen Windows vulnerabilities have already been exploited in the wild.

Ryan NaraineMarch 11, 2025

Malware & Threats

Adobe Plugs 45 Software Security Holes, Warns of Code Execution Risks

Patch Tuesday: Adobe patches 45 vulnerabilities across multiple products and warns of remote code execution exploitation risks.

Ryan NaraineFebruary 11, 2025

Cloud Security

Veeam Warns of Critical Vulnerability in Service Provider Console

Veeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug.

Ionut ArghireDecember 4, 2024

Vulnerabilities

VMware Patches High-Severity SQL Injection Flaw in HCX Platform

VMware patches CVE-2024-38814 and warns that attackers with non-administrator privileges can execute remote code on the HCX manager.

Ryan NaraineOctober 16, 2024

Endpoint Security

Microsoft Warns of OpenVPN Vulnerabilities, Potential for Exploit Chains

The vulnerabilities, patched in OpenVPN 2.6.10, expose users on the Windows platform to remote code execution attacks.

Ryan NaraineAugust 12, 2024

Network Security

QNAP Rushes Patch for Code Execution Flaw in NAS Devices

QNAP rolls out patches for multiple vulnerabilities after proof-of-concept exploit published for a remote code execution vulnerability.

Ionut ArghireMay 21, 2024

Incident Response

Critical Flaw in Popular ‘Ultimate Member’ WordPress Plugin

The vulnerability carries a CVSS severity score of 9.8/10 and affects web sites running the Ultimate Member WordPress membership plugin.

Ionut ArghireFebruary 26, 2024

Malware & Threats

ConnectWise Confirms ScreenConnect Flaw Under Active Exploitation

Security experts describe exploitation of the CVSS 10/10 flaw as “trivial and embarrassingly easy.”

Ryan NaraineFebruary 21, 2024

Phishing

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws

Microsoft warns of critical spoofing and remote code execution bugs in the Windows MSHTML Platform and Microsoft Power Platform Connector.

Ryan NaraineDecember 12, 2023

SECURITYWEEK NETWORK:

ICS:

All posts tagged "remote code execution"

Vulnerabilities

Hackers Exploit Langflow Vulnerability for Remote Code Execution

Vulnerabilities

Critical GitHub Vulnerability Exposed Millions of Repositories

Vulnerabilities

BeyondTrust Patches Critical RCE Vulnerability

Data Protection

High-Severity Remote Code Execution Vulnerability Patched in OpenSSL

Vulnerabilities

Vulnerabilities in Xerox Print Orchestration Product Allow Remote Code Execution

Vulnerabilities

Critical Vulnerabilities Patched in Trend Micro Apex Central, Endpoint Encryption

Malware & Threats

Exploit Code for Apache Tomcat RCE Vulnerability Published on Chinese Forum

Malware & Threats

Microsoft Flags Six Active Zero-Days, Patches 57 Flaws: Patch Tuesday

Malware & Threats

Adobe Plugs 45 Software Security Holes, Warns of Code Execution Risks

Cloud Security

Veeam Warns of Critical Vulnerability in Service Provider Console

Vulnerabilities

VMware Patches High-Severity SQL Injection Flaw in HCX Platform

Endpoint Security

Microsoft Warns of OpenVPN Vulnerabilities, Potential for Exploit Chains

Network Security

QNAP Rushes Patch for Code Execution Flaw in NAS Devices

Incident Response

Critical Flaw in Popular ‘Ultimate Member’ WordPress Plugin

Malware & Threats

ConnectWise Confirms ScreenConnect Flaw Under Active Exploitation

Phishing

Microsoft Patch Tuesday: Critical Spoofing and Remote Code Execution Flaws

Featured

Artificial Intelligence

Industry Reactions to Claude Fable 5: Feedback Friday

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Cybercrime

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

Incident Response

Alert Fatigue Is Becoming a Security Threat of Its Own

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

Vulnerabilities

Microsoft Patches Exploited Exchange Server Vulnerability

ICS/OT

Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers

Latest News

Supply Chain Security

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

Artificial Intelligence

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Management & Strategy

In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine

ICS/OT

Iranian Cyber Group Handala Claims Cal Water Hack

Vulnerabilities

Ivanti Sentry Exploitation Attempts Hitting Honeypots

Vulnerabilities

Chrome 149 Update Patches 28 Vulnerabilities

Artificial Intelligence

Anthropic Disputes Fable 5 AI Jailbreak

Daily Briefing Newsletter