Security Vulnerabilities

The latest Security Vulnerabilities

NewsSecurity Vulnerabilities

Google Chrome AI Manager Use-After-Free Remote Code Execution Vulnerability (CVE-2024-9954)

Luke Simmonds 453 Views 0 Comments 0 min read

CVE-2024-9954 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Google Chrome.

Read More
NewsSecurity Vulnerabilities

Hyperbridge critical vulnerability (CVE-2025-24800)

Jason Davies 480 Views 0 Comments 0 min read

A critical vulnerability was discovered in the ismp-grandpa crate, that allowed a malicious prover easily convince the verifier of the finality of arbitrary headers.

Read More
NewsSecurity Vulnerabilities

WordPress WP Go Maps Plugin is vulnerable to Cross Site Request Forgery (CVE-2025-24742)

Jason Davies 388 Views 0 Comments 0 min read

CVE-2025-24742 – There is a Cross-Site Request Forgery (CSRF) vulnerability in WP Go Maps (formerly WP Google Maps) WP Go Maps.

Read More
NewsSecurity Vulnerabilities

Cisco BroadWorks SIP Denial of Service Vulnerability (CVE-2025-20165)

Jason Davies 425 Views 0 Comments 1 min read

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service (DoS) condition.

Read More
NewsSecurity Vulnerabilities

Cisco Meeting Management REST API Privilege Escalation Vulnerability (CVE-2025-20156)

Jason Davies 369 Views 0 Comments 0 min read

A vulnerability in the REST API of Cisco Meeting Management could allow a remote, authenticated attacker with low privileges to elevate privileges to administrator on an affected device.

Read More
NewsSecurity Vulnerabilities

Adobe Photoshop node_modules Uncontrolled Search Path Element Local Privilege Escalation Vulnerability (CVE-2025-21127)

Duncan 342 Views 0 Comments 0 min read

CVE number – CVE-2025-21127 This vulnerability allows local attackers to escalate privileges on affected installations of Adobe Photoshop. An attacker

Read More
NewsSecurity Vulnerabilities

WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVE-2024-8811)

Luke Simmonds 269 Views 0 Comments 0 min read

CVE number – CVE-2024-8811 This vulnerability allows remote attackers to execute arbitrary code on affected installations of WinZip. User interaction

Read More
NewsSecurity Vulnerabilities

Cisco ThousandEyes Endpoint Agent for MacOS and RoomOS Certificate Validation Vulnerability (CVE-2025-20126)

Luke Simmonds 364 Views 0 Comments 0 min read

CVE number – CVE-2025-20126 A vulnerability in certification validation routines of Cisco ThousandEyes Endpoint Agent for macOS and RoomOS could

Read More
NewsSecurity Vulnerabilities

Tenda AC8v4 stack overflow vulnerability (CVE-2024-57703)

Jason Davies 321 Views 0 Comments 0 min read

CVE number – CVE-2024-57703 The Tenda AC8v4 V16.03.34.06 firmware has a stack overflow vulnerability in the setSchedWifi function. The src variable receives the schedStartTime parameter from

Read More
NewsSecurity Vulnerabilities

Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability (CVE-2025-21331)

Jason Davies 378 Views 0 Comments 0 min read

CVE Number – CVE-2025-21331 This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker

Read More