More results...
The security defects could be used to bypass authentication, execute arbitrary commands, and decrypt configuration files.
The post TP-Link Patches High-Severity Router Vulnerabilities appeared first on SecurityWeek.
The security defects could be used to bypass authentication, execute arbitrary commands, and decrypt configuration files.
The post TP-Link Patches High-Severity Router Vulnerabilities appeared first on SecurityWeek.
The US Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2026-33017, a recently disclosed code injection vulnerability in Langflow, an open-source framework for…
The Cybersecurity and Infrastructure Security Agency (CISA) has urgently added a critical flaw affecting Aquasecurity’s Trivy scanner to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2026-33634, this security weakness involves embed…
Red Hat has issued an urgent security alert regarding a highly sophisticated supply chain attack targeting the popular xz compression utility. Cybersecurity researchers discovered malicious code embedded within recent versions of the xz libra…
Microsoft recently patched a severe Elevation of Privilege (EoP) vulnerability in the Windows Error Reporting (WER) service, officially tracked as CVE-2026-20817. This flaw allows a local attacker with standard user rights to escalate to SYSTEM privile…
The Internet Systems Consortium (ISC) has released a critical security advisory addressing a high-severity vulnerability in its Kea DHCP server software. Kea is a modern, high-performance DHCP server widely used by enterprise networks and interne…
Specially crafted domains could be used to cause out-of-memory conditions, leading to memory leaks in the BIND resolvers.
The post BIND Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek.
The high- and medium-severity flaws could lead to denial-of-service, secure boot bypass, information disclosure, and privilege escalation.
The post Cisco Patches Multiple Vulnerabilities in IOS Software appeared first on SecurityWeek.
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a critical code-injection vulnerability in Langflow. Tracked as CVE-2026-33017, this severe security flaw has been officially added to CISA’s Known Exp…