Main Menu

CVE Vulnerability Alerts

Critical Grandstream Phone Vulnerability Allows for Eavesdropping Opportunities
CVE Vulnerability Alerts
Critical Grandstream Phone Vulnerability Allows for Eavesdropping Opportunities
February 23, 2026
A critical flaw in Grandstream phones enables remote code execution without authentication.
Critical Vulnerability in Honeywell CCTVs Exposes Security Risks
CVE Vulnerability Alerts
Critical Vulnerability in Honeywell CCTVs Exposes Security Risks
February 19, 2026
CISA alerts to a critical flaw in Honeywell CCTVs enabling unauthorized access with potential for account hijacking and system compromise.
Attackers Exploit Critical Vulnerability in BeyondTrust Remote Support
CVE Vulnerability Alerts
Attackers Exploit Critical Vulnerability in BeyondTrust Remote Support
February 17, 2026
BeyondTrust Remote Support's CVE-2026-1731, a critical vulnerability, witnessed exploitation attempts within 24 hours of the public release of a Proof of Concept (PoC), highlighting attackers' ...
CISA Catalog Includes BeyondTrust Flaw Vulnerability
CVE Vulnerability Alerts
CISA Catalog Includes BeyondTrust Flaw Vulnerability
February 17, 2026
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a vulnerability in BeyondTrust RS and PRA, identified as CVE-2026-1731, to its Known Exploited ...
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
CVE Vulnerability Alerts
SolarWinds Vulnerability Exploitation Prompts Immediate Response from Federal Agencies
February 4, 2026
Following the identification of a critical vulnerability in SolarWinds Web Help Desk, CISA has instructed federal agencies to patch their systems within three days. This ...
Russian Hackers Exploit Vulnerability in Microsoft Office to Target Ukraine
CVE Vulnerability Alerts
Russian Hackers Exploit Vulnerability in Microsoft Office to Target Ukraine
February 4, 2026
Russian hackers exploited CVE-2026-21509 vulnerability in Microsoft Office targeting Ukrainian systems. CERT Ukraine urges immediate security updates as exploitation risk persists.
Exploitations of WinRAR Vulnerability CVE-2025-8088 Emerge as a Major Threat
CVE Vulnerability Alerts
Exploitations of WinRAR Vulnerability CVE-2025-8088 Emerge as a Major Threat
January 28, 2026
Cyber attackers leverage the CVE-2025-8088 high-severity WinRAR vulnerability. This security loophole is targeted for initial access and malware delivery, affecting numerous organizations globally.
Major Security Flaw Found in vm2 Node.js Sandbox Tool
CVE Vulnerability Alerts
Major Security Flaw Found in vm2 Node.js Sandbox Tool
January 28, 2026
A serious vulnerability in the vm2 Node.js sandbox library, identified as CVE-2026-22709, could jeopardize system security by enabling the execution of arbitrary code outside the ...
CISA Identifies Critical Broadcom VMware vCenter Vulnerability CVE-2024-37079
CVE Vulnerability Alerts
CISA Identifies Critical Broadcom VMware vCenter Vulnerability CVE-2024-37079
January 28, 2026
CISA has added a significant vulnerability, CVE-2024-37079, found in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog. This move emphasizes the critical nature ...
CVE Vulnerability Alert! CVE-2025-14765 & CVE-2025-14766 – Microsoft Edge Remote Code Execution
CVE Vulnerability Alerts
CVE-2025-14765 & CVE-2025-14766 – Microsoft Edge Remote Code Execution
January 22, 2026
CVE-2025-64671 enables remote code execution in GitHub Copilot for JetBrains through cross prompt injection, allowing attackers to manipulate AI-generated instructions within developer environments.
Load More
Trending
APT28 Deploys PRISMEX Malware Against Ukraine and Its Allies
Newly Discovered UAT-10362 Threat Cluster Aims at Taiwanese NGOs
New Extortion Crew Uses Phishing to Breach High-Value Corporations
Bogus Traffic Violation Text Scam Targeting Americans
EvilTokens Kit Uses Device Code Phishing to Target Microsoft Accounts
Ukrainian CERT Impersonated in Phishing Campaign Distributing AGEWHEEZE
New Phishing Techniques Threaten TikTok Business Account Security
Cryptocurrency Threats via Phishing Campaign Targeting French-Speaking Corporations
LeakNet Ransomware Adopts ClickFix to Trick Users Into Compromising Themselves
Phishing Attack Hits Intuitive’s Internal IT Business Systems

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.