Researchers uncover PerfektBlue flaws in OpenSynergy’s BlueSDK, exposing millions of vehicles to remote code execution ...

Wing FTP Server vulnerability CVE-2025-47812 can be exploited for arbitrary command execution with root or system privileges.

A critical vulnerability in mcp-remote (CVE-2025-6514) allows remote code execution, affecting 437,000+ users.

Patch Tuesday fixes 137 vulnerabilities, including critical flaws in SQL Server, Netlogon, Office, and the .NET Framework.

WWII PC servers after hackers discovered they could hijack players’ computers simply by joining the same online lobby. This ...

Adobe patched 58 vulnerabilities across 13 products, including three critical-severity bugs in Adobe Connect, ColdFusion, and ...

MCP Host Code Execution We love MCP. It's an elegant and powerful protocol with huge potential, but the very mechanisms that make MCP so v ...

The National Computer Emergency Response Team (CERT) has issued a high-level security advisory warning organizations of a ...

Recently, NSFOCUS CERT detected that Elastic issued a security bulletin to fix the arbitrary code execution vulnerability caused by Elastic Kibana prototype contamination (CVE-2025-25014); Due to the ...

CVE-2024-7262 This section describes the bug exploited by APT-C-60 that allows code execution via hijacking the control flow of the WPS Office plugin component promecefpluginhost.exe.

Overview Recently, NSFOCUS CERT found that Google officially fixed a heap buffer overflow vulnerability (CVE-2023-4863). Due to a flaw in the WebP module, an attacker triggered the vulnerability by ...