vulnerability

Learn about the incorrect authorization vulnerability in Meta Platforms WhatsApp that allows unauthorized processing of content from arbitrary URLs. Discover mitigation steps and security recommendations.

CISA warns of a critical Bluetooth vulnerability in SunPower PVS6 solar inverters allowing attackers to take full device control. Learn about the impact, affected devices, and recommended mitigations.

Learn about the critical Sangoma FreePBX authentication bypass vulnerability that risks remote code execution and how to protect your system.

Discover critical vulnerabilities in Citrix Session Recording that pose risks to organizations. Learn about improper privilege management and deserialization flaws, along with recommended mitigation actions.

Apple has released critical updates to address CVE-2025-43300, a zero-day vulnerability affecting iOS, iPadOS, and macOS. Learn about the impact, affected devices, and how to stay secure.

Fortinet users are being warned of potential cyberattacks targeting their VPN tools. Learn about the latest threats, how to identify them, and steps to take to protect your network.

A critical vulnerability in Microsoft’s Copilot for M365 has allowed unauthorized access to sensitive files without leaving a trace in audit logs. Learn about the implications for organizations and the lack of transparency from Microsoft.

Cisco has addressed a critical vulnerability (CVE-2025-20265) in its Secure Firewall Management Center Software, allowing unauthenticated remote attackers to execute arbitrary shell commands. Learn more about the vulnerability and affected versions.

Learn about the critical WinRAR vulnerability (CVE-2025-8088) that allows attackers to hijack extraction processes. Discover the importance of applying the security patch before September 2, 2025.

A critical insecure deserialization vulnerability in N-able N-Central could allow attackers to execute arbitrary commands. Learn about the risks and recommended actions for organizations.