Technology ❯ Cybersecurity ❯ Threats

Exploits

Remote Code Execution Zero-Day Vulnerabilities Malware CVE Vulnerabilities Critical Vulnerabilities CVE-2025-59287 Command Injection Memory Corruption Issues EchoLeak CVE-2025-6554 CVE-2025-5914 Active Exploitation Proof-of-Concept CVE-2025-31324 Targeted Attacks Proof of Concept Ransomware Rowhammer Collision Attacks Remote Attacks Local Code Execution Use-After-Free Vulnerabilities Privilege Escalation Social Engineering Code Injection CVE-2025-61884 Zero-Day Exploits CVE-2025-64446 Active Attacks Jailbreaks CVE-2025-32978 CVE-2025-53770 CVE-2025-14733 Clickless Exploits Hypervisor Exploits Weak Keys Command Execution Cross-Site Request Forgery Remote Denial of Service

CISA Flags Actively Exploited WatchGuard Firebox RCE as Patches and IoCs Roll Out

CISA has added the flaw to its exploited-vulnerabilities catalog, setting a December 26 federal patch deadline.

Fortinet, Ivanti and SAP Push Critical Fixes as FortiCloud SSO Bypass Comes to Light

CISA Orders 7-Day Fix for New FortiWeb Zero-Day Exploited in the Wild

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

CISA Sets Nov. 14 Deadline After Active Attacks on Critical WSUS Flaw

Microsoft Reissues Emergency WSUS Patch as Exploits Spread and CISA Orders Federal Fix

TP-Link Patches Critical Omada Gateway Flaws Enabling Remote Code Execution

Microsoft’s October Patch Tuesday Fixes 175 Flaws as CISA Orders Rapid Patching of Exploited Zero‑Days

Microsoft Restricts IE Mode in Edge After Zero-Day Exploits

Oracle Issues Out-of-Band Patch for New E‑Business Suite Flaw (CVE-2025-61884)

Critical 'RediShell' Bug in Redis Gets Fix as Tens of Thousands Remain Exposed

RediShell: Critical Redis RCE Triggers Urgent Updates With 60,000 Servers Unauthenticated

Steam Blocks Risky Launches as Microsoft Urges Uninstalls After Unity Patches High-Severity Engine Flaw

Microsoft’s September Patch Tuesday Fixes 80–86 Flaws, Two Disclosed Zero-Days, No Active Exploits

Docker Patches Critical Desktop Flaw Allowing Container Escapes on Windows and macOS

Public Exploit Chains SAP NetWeaver Flaws for Admin-Level RCE

Zoom and Xerox Release Urgent Fixes for Critical Privilege and RCE Flaws

CISA Lists Two N-able N-central Flaws as Actively Exploited

Trend Micro Releases Mitigation Tool for Critical Apex One Zero-Days

Adobe Pushes Emergency Patches for Two Critical AEM Forms Zero-Days