High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the ...

The New Windows zero-day CVE-2025-21418 is being actively exploited. Learn how attackers can gain system access and what ...

CVE-2025-21391, the zero-day Windows storage flaw, stems from the way Windows resolves file paths and follows links, Walters ...

PostgreSQL SQL injection flaw (CVE-2025-1094) exploited alongside BeyondTrust zero-day, enabling arbitrary code execution.

Rapid7 finds a new zero-day vulnerability in PostgreSQL and links it to chain of attacks against a BeyondTrust Remote Support ...

Apple has released emergency security updates to patch a zero-day vulnerability that the company says was exploited in ...

Researchers discovered two active exploits of zero-day vulnerabilities in warehouse management software platform VeraCore.

Apple released an emergency iOS update to fix CVE-2025-24200, a zero-day flaw exploited to bypass USB Restricted Mode on ...

Rapid7 researchers believe the BeyondTrust Remote Support attacks from December also exploited a zero-day flaw in PostgreSQL.

Fortinet has disclosed a second authentication bypass vulnerability that was fixed as part of a January 2025 update for ...

On Monday, Apple released updates for its mobile operating systems for iOS and iPadOS, which fixed a flaw that the company ...

A critical USB restriction flaw was addressed in an emergency iOS and iPadOS update. Apple has rolled out emergency security ...