Adobe has released patches for 52 vulnerabilities across 10 products, including flaws leading to arbitrary code execution.
CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
Morning Overview on MSN
A critical Apache HTTP/2 flaw gives attackers a working proof-of-concept for remote code execution on millions of servers
A vulnerability in Apache HTTP Server’s HTTP/2 protocol handling now has working exploit code circulating among security ...
A new vulnerability has been discovered in the R programming language that allows arbitrary code execution upon deserializing specially crafted RDS and RDX files. R is an open-source programming ...
Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
Morning Overview on MSN
Ivanti patches a high-severity zero-day in Endpoint Manager that gave attackers remote code execution in targeted attacks
Ivanti has released emergency patches for its Endpoint Manager Mobile platform after confirming that attackers exploited a ...
MetInfo CMS flaw CVE-2026-29014 exploited after April 7 patch, enabling remote code execution and targeting 2,000 instances.
SAP has released 15 new security notes, including two addressing critical code injection flaws in S/4HANA and Commerce.
PandasAI, an open source project by SinaptikAI, has been found vulnerable to Prompt Injection attacks. An attacker with access to the chat prompt can craft malicious input that is interpreted as code, ...
The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...
Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results