A critical buffer overflow vulnerabilities in multiple Zoom clients for Windows that could enable authorized users to launch denial-of-service attacks through network access.
The vulnerabilities, tracked as CVE-2025-49464 and CVE-2025-46789, both carry a medium severity rating with CVSS scores of 6.5, highlighting significant security...
MediaTek has released its July 2025 Product Security Bulletin addressing a comprehensive range of vulnerabilities affecting smartphone, tablet, AIoT, smart display, smart platform, OTT, computer vision, audio, and TV chipsets.
The bulletin identifies 16 security vulnerabilities, with seven classified as high severity and nine...
A working proof-of-concept exploit for CVE-2025-5777, a critical memory disclosure vulnerability affecting Citrix NetScaler products that has been dubbed "CitrixBleed 2" due to its similarities to the notorious CVE-2023-4966 vulnerability.
The exploit allows attackers to exfiltrate 127 bytes of arbitrary memory data per request,...
SAP released a comprehensive security update on July 8, 2025, addressing 27 new vulnerabilities across its enterprise software portfolio, with seven classified as critical requiring immediate attention.
The July 2025 Patch Day also included updates to three previously released security notes, reflecting SAP's ongoing...
A critical vulnerabilities in macOS SMBClient that could allow remote attackers to execute arbitrary code and crash systems through kernel-level exploits.
The vulnerabilities affect the SMB filesystem client used by macOS to mount remote file shares, representing a significant security risk for Mac users...
A series of critical vulnerabilities in KIA's infotainment systems that allow attackers to inject malicious code through seemingly harmless PNG image files, potentially compromising thousands of vehicles worldwide.
The research, presented at Hardwear.io USA on May 30, 2025, revealed that KIA's infotainment systems run on...