Flash Notices (2)

Flash Notice: CVE-2025-29927 - Next.js Middleware Authorization Bypass

CVE-2025-29927 is a critical vulnerability discovered in Next.js, a widely used React framework for developing full-stack web applications.

Flash Notice: Windows NTFS Remote Code Execution Vulnerability

CVE-2025-24993 is a critical heap-based buffer overflow vulnerability in Windows NTFS that allows an authorized attacker to execute code locally.

Flash Notice: Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability

CVE-2025-24985 is a critical vulnerability in the Microsoft Windows Fast FAT File System Driver that allows for RCE due to an integer overflow.

Flash Notice: CVE-2025-23209 - Craft CMS Code Injection Vulnerability Analysis and Mitigation

CVE-2025-23209 is a high-severity code injection vulnerability in Craft CMS that can lead to remote code execution (RCE).

Flash Notice: CVE-2025-24989 - Microsoft Power Pages Improper Access Control Vulnerability

CVE-2025-24989 is a critical improper access control vulnerability in Microsoft Power Pages, a low-code SaaS platform for creating/managing business sites.

Flash Notice: CVE-2025-24472 Actively Exploited - Patch and Manage

CVE-2025-24472 is a high-severity authentication bypass vulnerability affecting Fortinet's FortiOS and FortiProxy products.

Flash Notice: Publicly Disclosed Windows Zero-Days

Microsoft’s latest report from Patch Tuesday highlighted fixes for a significant number of vulnerabilities, two of which are new zero-day vulnerabilities.

Flash Notice: Actively Exploited Windows Zero-Days

Microsoft’s latest report from Patch Tuesday highlights fixes for a significant number of vulnerabilities, two of which are under active exploitation.

Flash Notice: CVE-2025-21298 Zero-Click Vulnerability - Patch and Monitor

CVE-2025-21298 is a critical zero-click vulnerability in Windows Object Linking & Embedding (OLE) tech, which allows for RCE via specially crafted emails.

Flash Notice: CVE-2024-21672 Remote Code Execution Vulnerability - Patch and Monitor

CVE-2024-21672 is a high-severity Remote Code Execution (RCE) vulnerability affecting Atlassian Confluence Data Center and Server.

Prev 1 2 3 4 5 Next