An unauthenticated user can execute the attack, and there’s no mitigation, just a hotfix that should be applied immediately.

Newly disclosed vulnerability already being abused, users urged to lock down exposed firewalls WatchGuard is in emergency ...

WatchGuard has warned customers to patch a critical, actively exploited remote code execution (RCE) vulnerability in its ...

Windows Server 2025 is currently open to a Remote Code Execution exploit via the Windows Update Service, and at the time of this writing a fix from Microsoft has yet to fully patch the issue. Reports ...

HPE has released patches for a critical-severity OneView vulnerability that could lead to unauthenticated remote code ...

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the maximum-severity "React2Shell" remote code execution vulnerability.

Over the past week, enterprise security teams observed a combination of covert malware communication attempts and aggressive probing of publicly exposed infrastructure. These incidents, detected ...

Because it was under attack before a patch was made available by WatchGuard on December 18, this makes CVE-2025-14733 a bona ...

The bug exposes the Metro development server to remote attacks, allowing arbitrary OS command execution on developer systems before a fix in version 20.0.0. A critical remote-code execution (RCE) flaw ...

Executive Overview Over the past week, global threat activity has highlighted a critical reality: modern cyber attacks are faster, more coordinated, and increasingly industrialized. From mass ...

In response, Google has issued an immediate security update to Chrome Stable channel to address a critical use-after-free vulnerability in the Chrome ANGLE graphics library that may enable attackers ...