Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft ...
Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
Progress has released patches for multiple remote code execution and OS command injection flaws in MOVEit WAF and LoadMaster.
The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...
Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...
Tom's Hardware on MSN
Anthropic's model context protocol includes a critical remote code execution vulnerability
A design choice in the MCP SDKs allows remote code execution across the AI supply chain.
CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
Google Antigravity’s increasing popularity has brought the development platform into the crosshairs of researchers and ...
The prompt-injection issue in the agentic AI product for filesystem operations was a sanitization issue that allowed for ...
Remote terminal units, PLCs, PoS systems, and bedside patient monitors may be susceptible to remote code execution, ...
Hackers are actively exploiting a critical vulnerability in the Breeze Cache plugin for WordPress that allows uploading ...
CVSS vulnerability triage missed a chained Palo Alto attack that hit 13,000 devices. Five failure classes and the fixes ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results