The Hacker News

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog

CISA added VMware vCenter vulnerability CVE-2024-37079 to its KEV list after confirmed in-the-wild exploitation, urging ...

New Security Vulnerability Database Launches In The EU

A new vulnerability database has launched in the EU, in a bid to reduce dependence on the U.S. program. Here's what you need ...
SecurityWeek

Oracle’s First 2026 CPU Delivers 337 New Security Patches

Oracle patches roughly 230 unique CVEs across more than 30 products with its first Critical Patch Update (CPU) released in ...
The Hacker News

Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws

Zoom and GitLab have released security updates to resolve a number of security vulnerabilities that could result in denial-of ...
Security Boulevard

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection Vulnerability

Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM ...

GitLab patches major security flaw - here's what we know

A new patch fixes six important GitLab flaws ...

Google Chrome 143 Security Bypass — 3 Billion Users At Risk

This Google Chrome vulnerability could leave your apps exposed to attack. You have been warned. Update your browser now.

Palo Alto patches worrying security issue which could crash your firewall without logging in

A high-severity flaw was found in GlobalProtect Gateway and Portal ...
TMCnet

DTEX Designated as CVE Numbering Authority (CNA) Partner

The mission of the Common Vulnerabilities and Exposures (CVE®) Program is to identify, define, and catalog publicly disclosed ...
9to5Mac

CVE security program used by Apple and others has funding removed [U]

The CVE security program used to track vulnerabilities in both hardware and software has had its federal funding removed with immediate effect. Apple is one of a number of tech giants who rely on the ...
Hosted on MSN

Funding for the critical CVE security detection system renewed just hours before deadline

CVE funding gets last-minute funding reprieve A MITRE head told CVE board members that government funding is about to expire Some have called the move "reckless and ignorant" US government funding for ...
SD Times

CVE Program rescued at the last minute after concerns over losing its government funding

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...