DrayTek warns of remote code execution bug in Vigor routers

Networking hardware maker DrayTek released an advisory to warn about a security vulnerability in several Vigor router models that could allow remote, unauthenticated actors to execute perform ...
GCN

India’s CERT-In flags new flaws in enterprise software

CERT-In issues high-severity alerts for Microsoft products and Google Chrome vulnerabilities, warning of remote code ...

Oracle patches EBS zero-day exploited in Clop data theft attacks

Oracle is warning about a critical E-Business Suite zero-day vulnerability tracked as CVE-2025-61882 that allows attackers to ...
SecurityWeek

OpenSSL Vulnerabilities Allow Private Key Recovery, Code Execution, DoS Attacks

Three vulnerabilities have been patched in OpenSSL, including one that allows an attacker to recover the private key.
Security Boulevard

Top CVEs & Vulnerabilities of September 2025

CVEs & Vulnerabilities of September 2025 reveal a wave of high-impact flaws that security teams cannot afford to ignore. From unauthenticated exploits in FreePBX to privilege escalation in Android and ...

Security Breaches Found in AI-Powered Repair Tool Wondershare RepairIt

Cybersecurity researchers have revealed two critical flaws in Wondershare RepairIt, an AI-powered repair tool used by ...
The Hacker News

New WireTap Attack Extracts Intel SGX ECDSA Key via DDR4 Memory-Bus Interposer

SGX is designed as a hardware feature in Intel server processors that allows applications to be run in a Trusted Execution ...
The Hacker News

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

"When a user views an e-mail message containing a malicious ICS entry, its embedded JavaScript executes via an ontoggle event ...
Yehey.com

Yehey.com - CISA Warns Federal Agencies to Patch Critical Cisco Vulnerabilities

Image courtesy by QUE.com In a recent advisory, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a ...