A critical vulnerability in Apache bRPC's Redis protocol parser has been identified that allows remote attackers to execute denial-of-service attacks against affected systems.
The vulnerability, designated CVE-2025-54472, affects all versions of the industrial-grade RPC framework prior to version 1.14.1.
Apache bRPC is a widely-used C++...
A critical security vulnerability has been discovered in 7-Zip, the popular file compression utility, that allows attackers to perform arbitrary file writes during archive extraction, potentially leading to code execution.
The vulnerability, tracked as CVE-2025-55188, affects all versions of 7-Zip prior to 25.01 and...
A sophisticated exploitation of the Retbleed vulnerability, showcasing how attackers can read arbitrary physical memory from sandboxed processes and virtual machines at unprecedented speeds.
This development represents a significant escalation in the real-world impact of speculative execution vulnerabilities affecting modern AMD and Intel processors.
This...
The Cybersecurity and Infrastructure Security Agency (CISA) issued Emergency Directive 25-02 on August 7, 2025, ordering federal agencies to immediately address a critical vulnerability in Microsoft Exchange hybrid deployments.
The directive, responding to CVE-2025-53786, gives all Federal Civilian Executive Branch agencies until 9:00 AM...
Akamai Technologies has patched a critical HTTP request smuggling vulnerability affecting its Ghost platform, after a coordinated disclosure with security researcher James Kettle of PortSwigger.
The vulnerability, tracked as CVE-2025-32094, allowed attackers to inject a secondary HTTP request within the body of an initial...
A critical vulnerability in HTTP/1.1 protocol that exposes tens of millions of websites to hostile takeover through sophisticated desynchronization attacks.
Despite six years of vendor mitigation efforts, PortSwigger's latest research demonstrates that HTTP/1.1 remains fundamentally insecure, with attackers consistently bypassing deployed protections.
The vulnerability...