Sometimes a breach doesn’t kick down the front door. It just changes the name on the badge. A newly disclosed flaw in Apache StreamPipes lets ordinary users quietly promote themselves to ...

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack Vector: This metric reflects the context by which vulnerability ...

Apple recently patched two zero-days, one of which shares a CVE with a mysterious Google vulnerability disclosed last week. The two flaws were in WebKit, Apple's open source Web browser engine.

Apple's iOS 26.2 and iPadOS 26.2 updates include a variety of fixes, introduced to keep user data secure. Here's what you need to know, and why you should consider updating right away. On Friday, ...

SAP has released its December security updates addressing 14 vulnerabilities across a range of products, including three critical-severity flaws. The most severe (CVSS score: 9.9) of all the issues is ...

Microsoft today pushed updates to fix at least 56 security flaws in its Windows operating systems and supported software. This final Patch Tuesday of 2025 tackles one zero-day bug that is already ...

The Experience Manager security update resolves 117 vulnerabilities, including 116 identified as cross-site scripting (XSS) bugs. Adobe on Tuesday announced the rollout of patches for nearly 140 ...

Microsoft has addressed a Windows vulnerability exploited as zero-day that allows attackers to obtain System privileges. Microsoft on Tuesday announced patches for 57 vulnerabilities as part of its ...

Billions of Chrome users are getting a crucial safety upgrade before the year ends. Google has begun rolling out Chrome 143, a December update that patches 13 security vulnerabilities, four of them ...

“The Chrome team is delighted to announce the promotion of Chrome 143 to the stable channel for Windows, Mac and Linux,” Srinivas Sista from Google said, adding that the update will “roll out over the ...

Three critical zero-day vulnerabilities affecting PickleScan, a widely used tool for scanning Python pickle files and PyTorch models, have been uncovered by cybersecurity researchers. The flaws, all ...