Over 12,000 KerioControl firewalls exposed to exploited RCE flaw
Over twelve thousand GFI KerioControl firewall instances are exposed to a critical remote code execution vulnerability ...
The Hacker News1d
Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities
Zimbra has patched CVE-2025-25064, a critical SQL injection flaw (CVSS 9.8), and other security bugs. Update now to protect ...
Microsoft raises rewards for Copilot AI bug bounty program
Microsoft announced over the weekend that it has expanded its Microsoft Copilot (AI) bug bounty program and increased payouts ...
SecurityWeek14h
SAP Releases 21 Security Patches
SAP has released 19 new and two updated security notes on its February 2025 patch day, including six notes for high-severity vulnerabilities.
WeLiveSecurity6d
Patch or perish: How organizations can master vulnerability management
Another trend is of targeting perimeter-based products with vulnerability exploitation. The National Cyber Security Centre ...
SecurityWeek12d
VMware Patches High-Risk Flaws in Oft-Targeted Aria Operations Products
VMWare calls attention to patches for multiple 'high-risk' security defects in its Aria Operations and Aria Operations for ...
heise online19d
Patch now: Cross-site scripting and denial of service possible in GitLab
The operators of GitLab have published patch releases for their version management platform. The updates are available for both the Community Edition (CE) and the Enterprise Edition (EE). Versions ...
Experts warn about DeepSeek AI's potential security risks
Experts are warning of potential security risks when using DeepSeek, the AI-powered service that has disrupted the industry.