Dell Technologies has issued an urgent security advisory, DSA-2025-375, addressing multiple vulnerabilities in its Data Lakehouse platform.
Released on November 12, 2025, the update highlights a critical improper access control flaw that could allow high-privileged remote attackers to escalate their access, potentially compromising entire...
The Tor Project has rolled out Tor Browser 15.0.1, a timely update that enhances user privacy and security amid escalating online threats.
Released on November 11, 2025, this version addresses critical vulnerabilities through backported fixes from Firefox, ensuring safer, anonymous browsing for activists, journalists,...
Mozilla has released Firefox 145 on November 11, 2025, along with updates for Extended Support Release versions ESR 140.5 and ESR 115.30, to address 16 security vulnerabilities, several of which are rated high-impact and could enable remote code execution without user interaction beyond normal...
The MAD-CAT tool represents a significant advancement in simulating data corruption threats, building on the infamous Meow attacks that began in 2020.
Developed by Trustwave SpiderLabs researcher Karl Biron, MAD-CAT automates attacks across six vulnerable database platforms, highlighting persistent risks in misconfigured systems.
This...
Researchers at Catchify Security uncovered a severe unauthenticated remote code execution (RCE) vulnerability in UniFi OS, specifically affecting the UniFi Access application.
Dubbed CVE-2025-52665, the flaw stems from a misconfigured API endpoint in the backup system, allowing attackers to execute arbitrary commands without credentials.
This...
Schneider Electric has disclosed multiple critical security vulnerabilities in its EcoStruxure IT Data Center Expert software that could allow attackers to execute remote commands and compromise data center operations.
The vulnerabilities, affecting all versions 8.3 and prior of the monitoring software, include a maximum...