A critical security vulnerability in the popular AI-powered code editor Cursor IDE has been disclosed that allows attackers to execute remote code without any user interaction. The flaw, dubbed "CurXecute" and tracked as CVE-2025-54135, received a severity rating of...

A critical security vulnerability in the widely-used Squid proxy server has been discovered that could allow attackers to execute remote code and access sensitive system memory. The vulnerability, tracked as CVE-2025-54574 and designated SQUID-2025:1, affects all Squid versions up...

HashiCorp has issued a high-severity advisory (HCSEC-2025-14) detailing CVE-2025-6000, a vulnerability that allows a privileged Vault operator to achieve remote code execution on the host running Vault. The weakness affects Vault Community Edition and Vault Enterprise versions 0.8.0 through...

A critical Remote Code Execution (RCE) vulnerability has been discovered in the NestJS development tools package, allowing malicious websites to execute arbitrary commands on developers' local machines. The vulnerability, tracked as CVE-2025-54782, affects the @nestjs/devtools-integration package and has been...

Microsoft is set to introduce a revolutionary new feature that will allow IT administrators to proactively monitor network performance through silent test calls in Microsoft Teams. The feature, scheduled to roll out in September 2025, represents a significant advancement...

Genomic sequencing giant Illumina Inc. has agreed to pay $9.8 million to settle federal allegations that it knowingly sold cybersecurity-vulnerable genetic testing systems to U.S. government agencies over a seven-year period. The settlement, announced Thursday by the Department of...