A concerning security flaw has emerged affecting Apache Kafka, the widely adopted distributed event streaming platform. Researchers have identified a Severe Server Side Request Forgery (SSRF) vulnerability coupled with arbitrary file read capability within its SASL/OAUTHBEARER client configuration system.
This vulnerability exposes systems to significant risk,...
A vulnerability researcher has discovered a critical security vulnerability in Zyxel NWA50AX Pro WiFi 6 access points that allows unauthenticated attackers to delete arbitrary files on affected devices.
The vulnerability, discovered during a mountain vacation, represents an nday variant of previously known issues affecting...
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory about a critical Linux kernel vulnerability (CVE-2023-0386) actively exploited in real-world attacks.
Added to CISA’s Known Exploited Vulnerabilities (KEV) catalog, this privilege escalation vulnerability in the OverlayFS subsystem enables local attackers...
A critical vulnerability in Google’s Gerrit code-collaboration platform allowed unauthorized actors to inject malicious code into at least 18 high-profile Google projects, including ChromiumOS, Dart, and Bazel, according to research by Tenable Cloud Research.
Dubbed GerriScary (CVE-2025-1568), the vulnerability exposed supply chain risks...
BeyondTrust has disclosed a critical server-side template injection vulnerability affecting its Remote Support and Privileged Remote Access products, potentially allowing attackers to execute arbitrary code on affected systems.
The security vulnerability, tracked as CVE-2025-5309 and assigned a high-severity CVSSv4 score of 8.6, poses significant...
A critical security vulnerability in ASUS Armoury Crate software has been discovered that allows attackers to gain complete system control on Windows machines through a sophisticated hard link exploitation technique.
The vulnerability, designated CVE-2025-3464 with a high CVSS score of 8.8, affects the AsIO3.sys...