SonicOS SSLVPN Vulnerability Let Attackers Crash the Firewall Remotely
SonicWall has disclosed a critical stack-based buffer overflow vulnerability in its SonicOS SSLVPN service. That allows remote unauthenticated attackers to crash firewalls through denial-of-service...
Threat Actors Allegedly Selling Microsoft Office 0-Day RCE Vulnerability on Hacking Forums
A threat actor known as Zeroplayer has reportedly listed a zero-day remote code execution (RCE) vulnerability, combined with a sandbox escape, targeting Microsoft Office...
Critical N-able N-central Vulnerabilities Allow attacker to interact with legacy APIs and read sensitive...
N-able's N-central remote management and monitoring (RMM) platform faces critical security risks following the discovery of multiple vulnerabilities.
According to Horizon3.ai, it allows unauthenticated attackers...
Critical Twonky Server Vulnerabilities Let Attackers Bypass Authentication
Twonky Server version 8.5.2 contains two critical authentication bypass vulnerabilities that allow unauthenticated attackers to gain full administrative access to the media server software.
Rapid7...
Ollama Vulnerabilities Let Attackers Execute Arbitrary Code by Parsing of Malicious Model Files
A severe vulnerability in Ollama, one of GitHub's most popular open-source projects, with over 155,000 stars. The flaw enables attackers to execute arbitrary code...
CISA Warns of Google Chrome 0-Day Vulnerability Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert about a zero-day vulnerability in Google Chrome, actively exploited by threat...
Hackers Can Exploit Default ServiceNow AI Assistants Configurations to Launch Prompt Injection Attacks
A dangerous vulnerability in ServiceNow's Now Assist AI platform allows attackers to execute second-order prompt injection attacks via default agent configuration settings.
The flaw enables...
Cline AI Coding Agent Vulnerabilities Enables Prompt Injection, Code Execution, and Data Leakage
Cline is an open-source AI coding agent with 3.8 million installs and over 52,000 GitHub stars. Contains four critical security vulnerabilities that enable attackers...
Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild
Hackers have begun actively exploiting a critical remote code execution (RCE) vulnerability in the popular file archiver 7-Zip, putting millions of users at risk...
Massive Hacking Operation WrtHug Compromises Thousands of ASUS Routers Worldwide
A sophisticated cyber campaign known as Operation WrtHug has hijacked tens of thousands of ASUS WRT routers globally, turning them into potential espionage tools...
.webp?w=100&resize=100,70&ssl=1 "Top 10 Best Fraud Prevention Companies in 2025")
