Technology ❯ Cybersecurity ❯ Vulnerabilities

Zero-Day Exploits

Microsoft SharePoint Google Chrome Apple Security Updates Cisco AsyncOS CVE-2025-20393 Microsoft Security Updates Remote Code Execution WhatsApp Ivanti CVE-2024-43461 CVE-2025-2783 Microsoft Products Qualcomm Chips Windows Vulnerabilities Android Security Microsoft Software CVE-2025-43300 CVE-2025-10585 Account Takeover CVE-2025-4918 CVE-2025-4919 CVE-2025-5419 WinRAR CVE Identifiers Spyware Event Highlights macOS Vulnerabilities CISA CVE-2025-7775 Hacking Groups Incident Response CVE-2025-49706 Fortinet VPN Products Microsoft SharePoint Hack CVE-2025-40599 SonicWall SSL VPN Android Vulnerabilities ImageIO Framework Cisco Cisco Firewalls Microsoft Exchange Server CVE-2025-38352 Cisco IOS User Interaction Out-of-Bounds Write State-Sponsored Attacks CVE-2025-4428 CVE-2025-4427 CVE-2025-21043 Oracle E-Business Suite CVE-2025-27915 CVE-2021-43798 Zimbra Collaboration Suite Gogs Chakra JavaScript Engine CVE-2025-11371 Emergency Updates DNG Image Files LNK File Vulnerability CVE-2025-14372 CVE-2025-21042 CVE-2025-5777 CVE-2025-13223 CVE-2025-14373 CVE-2025-20337 Privilege Escalation Cisco ISE Secure Boot CVE-2025-22224 Software Patches CVE-2026-21519 CVE-2026-21514 iOS Security CVE-2026-21510 CVE-2026-20805 Dynamic Link Editor CVE-2026-21513 Microsoft Windows CVE-2026-21509 Ivanti Endpoint Manager Mobile Ivanti EPMM Microsoft CVE-2026-20700 Chrome Vulnerability Dell RecoverPoint Downgrade Attacks CVE-2026-2441 NAS Devices CVE-2024-43047 CVE-2024-43093 Apple Security RomCom Hacking Group Firewall Exploits Fortinet Firewalls PostgreSQL Windows Cyberattacks Patches Apple Software Updates State Actors

Dell Patches RecoverPoint Zero-Day Exploited Since 2024 by Suspected China Group

Researchers detail stealthy persistence using Ghost NICs alongside the newer Grimbolt backdoor.

Google Rushes Patch for Chrome Zero‑Day Exploited in the Wild

Apple Releases Fixes for Actively Exploited Dyld Zero-Day Across Its Platforms

Microsoft Fixes Six Actively Exploited Zero‑Days in February Patch Tuesday

European Commission Probes Mobile Management Breach as Ivanti Exploits Spread

Ivanti EPMM Zero-Day RCE Flaws Exploited as CISA Orders Rapid Mitigation

Cisco Releases Fix for AsyncOS Zero-Day Exploited on Secure Email Appliances

Microsoft Releases January 2026 Windows Updates With Security Fixes, Secure Boot Refresh

Huntress Uncovers Pre-Disclosure ESXi VM-Escape Toolkit Used in December Intrusion

China-Linked Hackers Exploit Cisco Email Zero-Day With No Patch as CISA Flags Active Threat

Apple, Google Rush Patches as CISA Flags WebKit Zero‑Day Exploits

Unpatched Gogs Zero-Day Is Under Active Exploitation, 700+ Servers Compromised

Google Ships Emergency Chrome Patch for Eighth 2025 Zero-Day Exploit

CISA Orders Chrome Zero-Day Fix as Google Rushes V8 Patch

Amazon Reveals Pre‑Disclosure Exploits of Citrix NetScaler and Cisco ISE to Plant Stealth Backdoor

Memento Labs CEO Confirms Dante Spyware Ownership After Chrome Zero-Day Campaign Exposed

Pwn2Own Ireland Awards $1.02 Million for 73 Zero‑Days as Summoning Team Wins Master of Pwn

Microsoft Restricts IE Mode in Edge After Zero-Day Exploits

Active Exploits Target Gladinet CentreStack and TrioFox Zero-Day That Can Lead to RCE

GreyNoise Flags 500% Surge in Scans on Palo Alto Login Portals on Oct. 3