Security Advisory

Critical Solar Winds Vulnerabilities being Exploited by Threat Actors

Critical Ivanti EPMM Attacks Exploited RCE; Security Updates Released

Ivanti has disclosed two critical code injection vulnerabilities in its Endpoint Manager Mobile (EPMM) product that enable unauthenticated remote code execution and have been exploited in zero-day attacks.

Critical vm2 Node.js Vulnerability Allow Sandbox Escape & Arbitrary Code Execution

Critical vm2 Node.js Library Sandbox Escape Vulnerability

Critical Fortinet Vulnerability in FortiCloud SSO Authentication Bypass

FortiCloud Single Sign-On (SSO)

Microsoft Released Emergency Security Updates; Patches Microsoft Office 0-Day Vulnerability

Microsoft Released Emergency Security Updates

Cyberattack Campaign Targeted CISCO Products; Impacting Cisco AsyncOS Software; Security Updates Released

Cisco Patched Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Microsoft Fixes 113 Vulnerabilities & 1 Actively Exploited 0-Day in First Patch Released -Jan2026

Microsoft Patch Tuesday 2026 Jan

Trend Micro Releases New Critical Patch for Trend Micro Apex Central

Trend Micro releases Critical patches for ‘Build 7190’ , Patches Multiple Vulnerabilities Including RCE & DoS

SonicWall Releases Patches in Actively Exploited Privilege Escalation Vulnerability

SonicWall has released a security update to fix a privilege escalation vulnerability in the SonicWall SMA1000 Appliance Management Console (AMC) that was tricked in zero-day attacks to escalate privileges.

Apple iOS & iPadOS Patch 0-Days Vulnerabilities, Exploited in Targeted Attacks

Apple iOS & iPadOS Patch Zero-Days Vulnerabilities, Exploited in Targeted Attacks

Scroll to top