Vulnerabilities

• Russian Hackers Exploit Email and VPN Vulnerabilities to Spy on Ukraine Aid Logistics 2025-05-22 00:30 The Hacker News
• Multi-national warning issued over Russia’s targeting of logistics, tech firms 2025-05-21 23:06 CyberScoop
• Russia's Fancy Bear swipes a paw at logistics, transport orgs' email servers 2025-05-21 19:39 The Register
• Russian Intelligence Hackers Stalk Western Logistics Firms 2025-05-21 17:13 Bank Information Security - New Jersey
• Ivanti EPMM 0-Day RCE Vulnerability Under Active Attack 2025-05-21 16:35 GBHackers
• SideWinder APT Hackers Exploits Legacy Office Vulnerabilities to Deploy Malware Undetected 2025-05-21 16:30 GBHackers
• PowerDNS Vulnerability Allows Attackers to Trigger DoS Attacks Through Malicious TCP Connections 2025-05-21 16:30 GBHackers
• PowerDNS Vulnerability Let Attackers Trigger DoS Attack Via Malicious TCP Connection 2025-05-21 16:29 Cyber Security News
• SideWinder APT Hackers Exploiting Old Office Flaws to Deliver Malware Bypassing Detections 2025-05-21 15:23 Cyber Security News
• U.S. CISA adds Ivanti EPMM, MDaemon Email Server, Srimax Output Messenger, Zimbra Collaboration, and ZKTeco BioTime flaws to its Known Exploited Vulnerabilities catalog 2025-05-21 14:19 Security Affairs
• Lexmark Printer Vulnerability Allows Attackers to Execute Arbitrary Code 2025-05-21 11:03 Cyber Security News
• Critical VMware ESXi & vCenter Flaw Allows Remote Execution of Arbitrary Commands 2025-05-21 09:07 GBHackers
• Critical Vulnerability in Palo Alto GlobalProtect Gateway & Portal Enables Remote Code Execution 2025-05-21 09:07 GBHackers
• Critical Vulnerability in Lexmark Printers Enables Remote Code Execution 2025-05-21 09:07 GBHackers
• Multiple Foscam X5 IP Camera Vulnerabilities Let Attackers Execute Arbitrary Code 2025-05-21 09:07 Cyber Security News
• Palo Alto GlobalProtect Vulnerability Enables Malicious Code Execution – PoC Released 2025-05-21 09:07 Cyber Security News
• Nation-state APTs ramp up attacks on Ukraine and the EU 2025-05-21 05:58 Help Net Security
• 'Ongoing' Ivanti hijack bug exploitation reaches clouds 2025-05-21 01:46 The Register
• VMware ESXi & vCenter Vulnerability Let Attackers Run Arbitrary Commands 2025-05-20 21:59 Cyber Security News
• 'Operation RoundPress' Targets Ukraine in XSS Webmail Attacks 2025-05-20 20:03 Dark Reading
• ESET Research uncovers Operation RoundPress: Russia-aligned Sednit targets entities linked to the Ukraine war to steal confidential data 2025-05-20 18:41 EIN Presswire
• ESET Research APT Report: Russian cyberattacks in Ukraine intensify; Sandworm unleashes new destructive wiper 2025-05-20 18:40 EIN Presswire
• Russian APT Groups Intensify Attacks in Europe with Zero-Day Exploits and Wipers 2025-05-20 17:51 Infosecurity Magazine
• Freshly discovered bug in OpenPGP.js undermines whole point of encrypted comms 2025-05-20 16:57 The Register
• Hacking contest exposes VMware security 2025-05-20 15:52 Computer Weekly
• Windows 11 Privilege Escalation Vulnerability Let Attackers Gain Admin Access in Under 300 Milliseconds 2025-05-20 14:25 GBHackers
• WordPress Plugin Flaw Puts 22,000 Websites at Risk of Cyber Attacks 2025-05-20 14:25 GBHackers
• Qilin Exploits SAP Zero-Day Vulnerability Weeks Ahead of Public Disclosure 2025-05-20 14:24 GBHackers
• Critical Vulnerability in VMware Cloud Foundation Exposes Sensitive Data to Attackers 2025-05-20 14:24 GBHackers
• Security Flaw in WordPress Plugin Puts 22,000 Websites at Risk of Cyber Attacks 2025-05-20 14:24 GBHackers
• WordPress Plugin Vulnerability Exposes 22,000 Sites to Cyber Attacks 2025-05-20 14:24 Cyber Security News
• VMware Cloud Foundation Vulnerability Let Attackers Access Sensitive Data 2025-05-20 14:24 Cyber Security News
• CISA Includes MDaemon Email Server XSS Flaw in KEV Catalog 2025-05-20 14:24 GBHackers
• Qilin Exploited SAP 0-Day Vulnerability Weeks Before its Public Disclosure 2025-05-20 14:24 Cyber Security News
• South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware 2025-05-20 13:21 The Hacker News
• CISA Adds Ivanti EPMM 0-day to KEV Catalog Following Active Exploitation 2025-05-20 13:13 Cyber Security News
• Debian 12.11 Released with 81 Bug Fixes & 45 Security Updates 2025-05-20 12:59 Linux Security
• Critical pfSense Firewall Flaws Enable Attackers to Inject Malicious Code 2025-05-20 07:54 GBHackers
• CISA Adds Actively Exploited Ivanti EPMM Zero-Day to KEV Catalog 2025-05-20 07:54 GBHackers
• 2025:01586-1 important: rubygem-rack session management flaw 2025-05-20 00:29 Linux Security
• 2025:01585-1 important: apache2-mod_auth_openidc DoS fix 2025-05-20 00:29 Linux Security
• Government warns Google Chrome users on Windows and Mac of severe security risks 2025-05-19 23:03 India Today
• GNU C(glibc) Vulnerability Let Attackers Execute Arbitrary Code on Millions of Linux Systems 2025-05-19 20:10 GBHackers
• Critical Firefox 0-Day Flaws Allow Remote Code Execution 2025-05-19 20:10 GBHackers
• Confluence Servers Under Attack: Hackers Leverage Vulnerability for RDP Access and Remote Code Execution 2025-05-19 20:10 GBHackers
• Active Exploitation of Ivanti EPMM Zero-Day Vulnerability in the Wild 2025-05-19 20:10 GBHackers
• Google Chrome users alert! Govt issues urgent warning over critical security flaws, here’s how to fix 2025-05-19 20:04 Digit.in
• Mozilla fixed zero-days recently demonstrated at Pwn2Own Berlin 2025 2025-05-19 19:59 Security Affairs
• Hackers Exploiting Confluence Server to Enable RDP Access & Remote Code Execution 2025-05-19 19:23 Cyber Security News
• Mozilla Just Patched Two Firefox Zero-Days Discovered at a Hacking Contest 2025-05-19 18:44 Lifehacker - Massachusetts
• FEDORA-2025-c40948de3a moderate: webkitgtk memory crash fixes 2025-05-19 18:08 Linux Security
• 2025-138-01 critical: firefox security fix 2025-05-19 18:07 Linux Security
• 2025:1576-1 moderate fix for openssh logic error issue 2025-05-19 18:07 Linux Security
• Google Chrome users at risk: Government warns of major security vulnerabilities 2025-05-19 17:16 Mint
• Over 40,000 iOS Apps Found Exploiting Private Entitlements, Zimperium 2025-05-19 17:07 Hackread
• ₹9 crore in 3 days: Hackers expose 29 zero-days at Pwn2Own Berlin 2025 2025-05-19 16:35 News9 Live
• Google Chrome Security Flaws Could Grant Hackers Unauthorised System Access: CERT-In 2025-05-19 16:26 Gadgets 360
• Ivanti Endpoint Mobile Manager customers exploited via chained vulnerabilities 2025-05-19 16:14 Cybersecurity Dive
• New Firefox Warning—Emergency Update Fixes Two Exploited Flaws 2025-05-19 14:55 Forbes
• Relaunch Your Google Chrome Browser Now As Attacks Continue 2025-05-19 14:55 Forbes
• Qualcomm chip vulnerability found in millions of Google, Samsung, and LG phones 2025-05-19 13:51 ZDNet
• ⚡ Weekly Recap: Zero-Day Exploits, Insider Threats, APT Targeting, Botnets and More 2025-05-19 11:57 The Hacker News
• Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards 2025-05-19 11:57 The Hacker News
• Firefox 0-day Vulnerabilities Let Attackers Execute Malicious Code 2025-05-19 11:37 Cyber Security News
• AUS undergraduate uncovers security flaw in Python library, PyCel 2025-05-19 11:31 Sharjah24
• glibc Vulnerability Exposes Millions of Linux Systems to Code Execution Attacks 2025-05-19 08:23 Cyber Security News
• Windows Remote Desktop Gateway UAF Vulnerability Allows Remote Code Execution 2025-05-19 05:58 Cyber Security News
• Eeek! p0wned Alabama hit by unspecified 'cybersecurity event' 2025-05-19 04:33 The Register
• IBM i PTF Guide, Volume 27, Number 20 2025-05-19 04:13 IT Jungle
• intel-microcode update for vulnerabilities 2025-05-18 21:01 Linux Security
• Google Chrome users in India at high risk, warns Government, shares advisory, details inside 2025-05-18 14:55 India.com
• Google Chrome vulnerabilities expose millions — What should you do 2025-05-18 13:36 The Economic Times
• 'All' Google Chrome users must 'relaunch browsers' now after zero-day warning 2025-05-18 11:15 Birmingham Live
• Alert for ALL Google Chrome users to ‘relaunch’ browsers now – or device could be hijacked by worrying ‘zero-day’ flaw 2025-05-18 10:16 The Scottish Sun
• Week in review: Microsoft patches 5 actively exploited 0-days, recently fixed Chrome vulnerability exploited 2025-05-18 10:08 Help Net Security
• All Chrome users must 'relaunch' their browser now - don't ignore new alert 2025-05-18 07:05 Daily Express
• Google Chrome Deadline—21 Days To Update Or Stop Using Browser 2025-05-17 12:45 Forbes
• Windows Security Updates – How to Stay Ahead of Vulnerabilities 2025-05-16 20:32 Cyber Security News
• Multiple Ivanti Endpoint Mobile Manager Vulnerabilities Allows Remote Code Execution 2025-05-16 20:32 Cyber Security News
• Linux Kernel Patching and Preventing Exploits in 2025 2025-05-16 20:31 Cyber Security News
• Ivanti EPMM Hit by Two Actively Exploited 0day Vulnerabilities 2025-05-16 19:05 Hackread
• SUSE-SU-2025:1565-1 Moderate Security Fix 2025-05-16 18:49 Linux Security
• Intel Chip Bug Risks Linux Security Boundaries 2025-05-16 18:49 Linux Security
• PowerShell Meets Remcos: The Rise of Fileless RAT Attacks 2025-05-16 13:02 Information Security Buzz
• Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks 2025-05-16 10:20 The Hacker News
• Google fixed a Chrome vulnerability that could lead to full account takeover 2025-05-16 08:02 Security Affairs
• CISA Warns of TeleMessage Vuln Despite Low CVSS Score 2025-05-13 18:37 Dark Reading