Technology ❯ Cybersecurity ❯ Threats

Exploits

Remote Code Execution Zero-Day Vulnerabilities Proof of Concept CVE-2025-59287 Command Injection CVE-2025-14733 CVE Vulnerabilities Code Injection Critical Vulnerabilities Malware BYOVD Technique CVE-2025-6554 CVE-2025-5914 Active Exploitation Proof-of-Concept CVE-2025-31324 Targeted Attacks Ransomware Rowhammer Collision Attacks Remote Attacks Local Code Execution Use-After-Free Vulnerabilities Wallet Attacks Privilege Escalation Social Engineering CVE-2025-61884 User Interaction Required Zero-Day Exploits CVE-2026-25049 CVE-2025-64446 Active Attacks Jailbreaks Sophisticated Attacks Memory Leaks CVE-2025-32978 Phishing Attacks Arbitrary File Upload Indirect Prompt Injection Remote Access Common Vulnerabilities and Exposures Malicious Actors Deserialization Vulnerabilities OpenClaw CVE-2025-53770 CVE-2026-26119 Clickless Exploits Hypervisor Exploits Weak Keys Command Execution Cross-Site Request Forgery Remote Denial of Service Memory Corruption Issues EchoLeak Honeypots

Google Rushes Patch for Chrome Zero‑Day Exploited in the Wild

Security agencies urge immediate updates following Google’s confirmation of active exploitation.

Public Exploits Detail n8n Sandbox Escape That Lets Workflow Users Take Over Servers

EDR Killer Abuses Revoked EnCase Driver to Disable 59 Security Tools

SolarWinds Releases Web Help Desk 2026.1 to Fix Critical RCE and Authentication Bypass Flaws

Fortinet Begins Patching Actively Exploited FortiCloud SSO Bypass as CISA Sets Jan. 30 Deadline

Researchers Expose Gemini Calendar Data Leak via Malicious Invites as Google Rolls Out Mitigations

WordPress Modular DS Flaw Under Active Attack as Patch Ships to Block Admin Takeovers

Palo Alto Patches GlobalProtect DoS Flaw That Can Force Firewalls Into Maintenance Mode

Apple Confirms Targeted iPhone Spyware Attacks as iOS 26 Becomes the Only Route to Critical Fixes

Cisco Patches ISE File-Read Flaw After Public Exploit

CISA Adds HPE OneView, Microsoft Office Flaws to Exploited Vulnerabilities List

Veeam Ships Fixes for Critical Backup & Replication RCE, Urges Update to 13.0.1.1071

Ongoing Multi-Chain Wallet Drains Top $107,000 as Investigators Track Suspect Address

CISA Flags Actively Exploited WatchGuard Firebox RCE as Patches and IoCs Roll Out

Fortinet, Ivanti and SAP Push Critical Fixes as FortiCloud SSO Bypass Comes to Light

CISA Orders 7-Day Fix for New FortiWeb Zero-Day Exploited in the Wild

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

CISA Sets Nov. 14 Deadline After Active Attacks on Critical WSUS Flaw

Microsoft Reissues Emergency WSUS Patch as Exploits Spread and CISA Orders Federal Fix

TP-Link Patches Critical Omada Gateway Flaws Enabling Remote Code Execution