News Veeamの新たな脆弱性によりバックアップサーバーがRCE攻撃にさらされる
Veeamは、重大なリモート・コード実行(RCE)の脆弱性を含む、Backup & Replicationソフトウェアの複数のセキュリティ欠陥を修正するセキュリティ・アップデートをリリースしました。 CVE-2025-59470として追跡さ...
Vulnerability
News 
News レガシーDSLルーターにD-Linkの新たな欠陥、攻撃で積極的に悪用される
脅威者は、数年前にサポートが終了した複数の D-Link DSL ゲートウェイルーターに影響する、最近発見されたコマンドインジェクションの脆弱性を悪用しています。 この脆弱性は現在、CVE-2026-0625 として追跡されており、CGI ...
News Are Copilot prompt injection flaws vulnerabilities or AI limits?
Microsoft has pushed back against claims that multiple prompt injection and sandbox-related issues raised by a security ...
News IBM warns of critical API Connect auth bypass vulnerability
IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that ...
News MongoDB warns admins to patch severe vulnerability immediately
Update 12/26/25: Article updated to correct that the flaw has not been officially classified as an RCE. MongoDB has warn...
News Critical RCE flaw impacts over 115,000 WatchGuard firewalls
Over 115,000 WatchGuard Firebox devices exposed online remain unpatched against a critical remote code execution (RCE) v...
News New UEFI flaw enables pre-boot attacks on motherboards from Gigabyte, MSI, ASUS, ASRock
The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memor...
News New critical WatchGuard Firebox firewall flaw exploited in attacks
WatchGuard has warned customers to patch a critical, actively exploited remote code execution (RCE) vulnerability in its...
News HPE warns of maximum severity RCE flaw in OneView software
Hewlett Packard Enterprise (HPE) has patched a maximum-severity vulnerability in its HPE OneView software that enables a...
News Cisco warns of unpatched AsyncOS zero-day exploited in attacks
Cisco warned customers today of an unpatched, maximum-severity Cisco AsyncOS zero-day actively exploited in attacks tar...