A critical-severity remote code execution vulnerability, tracked as CVE-2026-8178, has been disclosed in the Amazon Redshift JDBC Driver,...
Year: 2026
A critical remote code execution vulnerability in the popular Soundcloud-RPC Electron desktop client allows attackers to execute arbitrary operating...
Cisco’s latest critical flaw in Catalyst SD‑WAN, tracked as CVE‑2026‑20182, allows unauthenticated remote attackers to bypass authentication...
A critical authentication bypass vulnerability in PraisonAI, the open-source multi-agent AI orchestration framework, was actively scanned by...
A critical vulnerability in Microsoft Authenticator tracked as CVE-2026-41615 allows remote attackers to silently steal sign-in access tokens from...
A critical server-side request forgery vulnerability in the popular Next.js React framework is putting tens of thousands...
A high-severity code injection vulnerability in protobufjs-cli, the command-line companion to one of npm’s most downloaded packages, could...
A high-severity local privilege escalation (LPE) vulnerability in its CoworkVMService component. This flaw required no admin rights...
A newly disclosed security vulnerability in GitHub Copilot CLI allows attackers to achieve arbitrary code execution by...
A perfect-10 CVSS code-injection flaw in the widely used Node.js sandboxing library vm2 allows unauthenticated remote attackers...