| May 8, 2025 GoldenDB DDE Injection Vulnerability: High-Severity Security Alert CVE-2025-46579 is a high-severity Dynamic Data Exchange (DDE) injection vulnerability affecting ZTE's GoldenDB database product.
| May 8, 2025 Urgent: High-Severity Vulnerability in Microsoft Dynamics Discovered CVE-2025-30391 is a high-severity information disclosure vulnerability within Microsoft Dynamics.
| Apr 7, 2025 Ivanti Buffer Overflow Vulnerability Leads to Remote Code Execution CVE-2025-22457 is a critical stack-based buffer overflow vulnerability affecting Ivanti Connect Secure, Pulse Connect Secure, and Ivanti Policy Secure
| Apr 1, 2025 Critical Kubernetes Ingress NGINX Controller RCE Vulnerability Found CVE-2025-1974 is a critical vulnerability in the Kubernetes Ingress NGINX Controller that permits unauthenticated remote code execution (RCE).
| Mar 26, 2025 Next.js Authorization Bypass Vulnerability (CVE-2025-29927) Alert CVE-2025-29927 is a critical vulnerability discovered in Next.js, a widely used React framework for developing full-stack web applications.
| Mar 19, 2025 Critical Windows NTFS Vulnerability: Immediate Patch Required CVE-2025-24993 is a critical heap-based buffer overflow vulnerability in Windows NTFS that allows an authorized attacker to execute code locally.
| Mar 18, 2025 Windows Fast FAT File System Driver Integer Overflow Vulnerability CVE-2025-24985 is a critical vulnerability in the Microsoft Windows Fast FAT File System Driver that allows for RCE due to an integer overflow.
| Mar 10, 2025 Craft CMS Code Injection Vulnerability CVE-2025-23209 Details, Mitigation CVE-2025-23209 is a high-severity code injection vulnerability in Craft CMS that can lead to remote code execution (RCE).
| Mar 10, 2025 Critical Vulnerability in Microsoft Power Pages: Action Required CVE-2025-24989 is a critical improper access control vulnerability in Microsoft Power Pages, a low-code SaaS platform for creating/managing business sites.
| Feb 18, 2025 Critical CVE-2025-24472 Vulnerability in Fortinet Products: Patch Now CVE-2025-24472 is a high-severity authentication bypass vulnerability affecting Fortinet's FortiOS and FortiProxy products.
