Microsoft released out-of-band patches for an actively exploited Microsoft Office zero-day, CVE-2026-21509, a security ...

Microsoft released patches for CVE-2026-21509, a new Office zero-day vulnerability that can be exploited to bypass security ...

Another actively abused Office bug, another emergency patch – Office 2016 and 2019 users are left with registry tweaks instead of fixes. Microsoft has issued an emergency Office patch after confirming ...

Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks ...

Microsoft has finally addressed a serious zero-day vulnerability affecting multiple Office versions. However, not all users ...

CISA has flagged a critical VMware vCenter Server vulnerability as actively exploited and ordered U.S. federal agencies to ...

CISA has added to the KEV catalog two Linux vulnerabilities leading to privilege escalation and authentication bypass via ...

If you skipped it back then, now’s a very good time You've got to keep your software updated. Some unknown miscreants are exploiting a critical VMware vCenter Server bug more than a year after ...

CISA added VMware vCenter vulnerability CVE-2024-37079 to its KEV list after confirmed in-the-wild exploitation, urging ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) picked up on an ongoing VMware flaw affecting the software’s centralized management utility. CISA added the flaw, designated as ...

CVE-2025-64155, a command injection vulnerability, was disclosed earlier this week and quickly came under attack from a ...

Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM ...