Cisco has issued a critical security advisory warning of multiple vulnerabilities in its Unified Contact Center Express (Unified CCX) software that could enable unauthenticated remote attackers to execute arbitrary code and escalate privileges.
Published on November 5, 2025, the advisory highlights two high-severity flaws...
The Django Software Foundation has urgently released security patches for its popular Python web framework, addressing two critical vulnerabilities that could enable SQL injection attacks and denial-of-service disruptions.
These flaws, disclosed on November 5, 2025, affect multiple versions including Django 4.2, 5.1, and 5.2,...
Researchers at Tenable have uncovered seven critical vulnerabilities in OpenAI's ChatGPT, affecting both GPT-4o and the newly launched GPT-5 models.
These flaws expose users to sophisticated attacks that can steal private data from chat histories and memories without any user interaction true zero-click exploits....
A critical vulnerability in Microsoft's Windows Cloud Files Mini Filter Driver has been exploited to enable local privilege escalation, allowing attackers with limited access to gain SYSTEM-level control over affected systems.
Tracked as CVE-2025-55680, this time-of-check to time-of-use (TOCTOU) race condition was disclosed at...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a urgent alert by adding CVE-2025-11371 to its Known Exploited Vulnerabilities (KEV) catalog, highlighting active exploitation of a critical flaw in Gladinet's CentreStack and Triofox platforms.
This unauthenticated local file inclusion (LFI) vulnerability allows...
A critical remote code execution (RCE) vulnerability in a widely used React Native npm package has left developers exposed to potential attacks, according to security researchers at JFrog.
Designated CVE-2025-11953, the flaw carries a CVSS score of 9.8, indicating high severity due to its...