FreePBX Rings Red: Zero-Day Lets Attackers Dial in as Root
FreePBX administrators are facing urgent calls to secure their systems against an actively exploited zero-day vulnerability in the commercial Endpoint…
FreePBX administrators are facing urgent calls to secure their systems against an actively exploited zero-day vulnerability in the commercial Endpoint…
Executive Summary A critical remote code execution (RCE) vulnerability in Apache ActiveMQ is being actively exploited to deliver DripDropper, a sophisticated…
Cisco has recently addressed a critical security vulnerability, CVE-2025-20265, in its Secure Firewall Management Center (FMC) Software. With a maximum CVSS…
Executive Summary The Raspberry Robin malware, a sophisticated and evolving threat, actively exploits a new vulnerability in Windows systems. First…
China-nexus espionage group, tracked as CL-STA-0969 and overlapping with "Liminal Panda," is actively targeting telecommunications organizations in Asia. This sophisticated…
A newly discovered zero-day vulnerability, CVE-2025-53770, is actively exploited in Microsoft SharePoint Servers, posing a significant threat to organizations using on-premises…
A critical security vulnerability, CVE-2025-25257, has been discovered in FortiWeb web application firewalls, potentially allowing unauthenticated attackers to execute unauthorized…
Fortinet disclosed a critical security vulnerability in its FortiOS operating system, which is CVE-2025-24477. The flaw is classified as CWE-122,…
DotNetNuke (DNN), a widely used open-source content management system (CMS) built on the .NET framework, has a critical vulnerability. This…
A critical security vulnerability has been discovered in Cisco Unified Communications Manager (Unified CM), presenting a serious threat to organizations…