Open WebUI, an open-source, self-hosted web interface for interacting with local or remote AI language models, carried a high ...

CVE-2026-0625, a critical command injection flaw (9.3/10), is being actively exploited in legacy D-Link gateway routers ...

SmarterMail patched CVE-2025-52691, a maximum-severity RCE flaw allowing unauthenticated arbitrary file uploads Exploitation could let attackers deploy web shells or malware, steal data, and pivot ...

The Indian government has issued a ‘critical’ warning for Android smartphone users urging them to update their devices. The ...

A newly discovered vulnerability in AMD chips allows malicious actors to perform remote code execution (RCE) and privilege ...

Blockchain security firm SlowMist has issued an urgent warning to the developer community regarding a sophisticated new attack vector targeting users of "vibe ...

Fortinet patches six vulnerabilities, including critical flaws in FortiFone and FortiSIEM leading to configuration leak and ...

The latest update from Microsoft deals with 112 flaws, including eight the company rated critical — and three zero-day ...

Critical105Important0Moderate0LowMicrosoft addresses 113 CVEs in the first Patch Tuesday of 2026, with two zero-days, ...

Veeam released security updates to patch multiple security flaws in its Backup & Replication software, including a critical ...

Adobe released 11 security bulletins for 25 vulnerabilities, including a critical code execution bug in ColdFusion.

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...