Hackers are exploiting a critical vulnerability (CVE-2026-48282) in Adobe ColdFusion that carries a CVSS score of 10/10.
Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after ...
Ubiquiti has released security updates to patch seven critical vulnerabilities in UniFi OS, including a maximum-severity flaw ...
GhostLock (CVE-2026-43499) is a 15-year-old Linux kernel vulnerability that allows attackers to gain root privileges.
Attackers wasted little time targeting the latest memory disclosure bug in Citrix NetScaler, after researchers published a ...
A Linux vulnerability that allows untrusted virtual machines to gain root access to host machines is one of two high-severity ...
CISA added CVE-2026-45659 SharePoint Server RCE to KEV following confirmed exploitation, requiring U.S. agencies to patch by ...
A critical flaw in Gitea's official Docker image let anyone impersonate an admin with one forged header. Sysdig spotted the ...
For the last 25 years since its inception, the CVE Program (Common Vulnerabilities and Exposures) continues to be the dominant way of referencing security vulnerabilities and an important cornerstone ...
Forbes contributors publish independent expert analyses and insights. Kate O’Flaherty is a cybersecurity and privacy journalist. U.S. President Donald Trump has cut funding for the global database of ...
CVE stands for Common Vulnerabilities and Exposures. It is a program launched in 1999 by MITRE, a nonprofit that operates research and development centers sponsored by the federal government, to ...
Were the CVE program to be discontinued, security teams would have a hard time finding one resource that would function with the same impact across the board. Here are current issues of relying on CVE ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results