Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...

Over 115,000 WatchGuard Firebox devices exposed online remain unpatched against a critical remote code execution (RCE) ...

Hewlett Packard Enterprise (HPE) has patched a maximum-severity vulnerability in its HPE OneView software that enables attackers to execute arbitrary code remotely.

React2Shell (CVE-2025-55182) is a critical vulnerability affecting the most widely used React-based services across the web ecosystem. With low exploitation complexity and publicly available PoCs, ...

Maximum-severity vuln lets unauthenticated attackers execute code on trusted infra management platform Hewlett Packard ...

Fortinet has finally patched a critical security vulnerability in its Wireless LAN Manager (FortiWLM) that could allow unauthenticated sensitive information disclosure. And, when chained with another ...

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

TL;DR: Activision Blizzard has taken Call of Duty: WWII on PC offline from the Xbox App due to a critical remote code execution vulnerability. This security flaw allows hackers to hijack PCs, causing ...

In a nutshell: Microsoft's June 2024 Patch Tuesday Windows 10 and 11 updates fix 51 security flaws, including a Wi-Fi vulnerability that enables remote code execution. Despite its low threat rating, ...

A flaw in the trust model of a popular artificial intelligence (AI)-powered development environment can allow a malicious actor to modify already approved code extensions for a project and conduct ...

On Monday, Italian programmer Simone Margaritelli, who goes by the handle @evilsocket, claimed that there was an unauthenticated Remote Code Execution (RCE) with a Common Vulnerability Scoring System ...