Alerts

Mozilla has released an updated Firefox version 147.0.2 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to bypass security restrictions, corrupt memory, execute arbitrary code, and gain access to the affected system. Sample of the addressed vulnerabilities: Mozilla Use-After-Free in the Layout: Scrolling and Overflow Component Vulnerability (CVE-2026-24869): CVSS: 8.1 Attack Vector: […]

Microsoft has released a security update to fix a vulnerability across multiple versions of Microsoft Office. The addressed vulnerability could allow the local attacker to bypass security restrictions to the affected system. Microsoft Office Security Feature Bypass Vulnerability (CVE-2026-21509): CVSS: 7.8 Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Consequences: Bypass

Cisco has released security updates to fix several vulnerabilities across multiple Cisco products. The addressed vulnerabilities could allow the attacker to conduct cross-site scripting attacks, escalate privileges, perform denial-of-service attacks, obtain sensitive information, or execute arbitrary commands/code and gain access to the affected systems. Sample of addressed vulnerabilities: 1. Cisco Unified Communications Products Remote Code

Oracle released its patch update for January 2026, containing 337 new security patches for multiple affected products in Oracle and third-party components. The addressed vulnerabilities could allow the attacker to perform various attacks, such as obtaining sensitive information, conducting denial of service attacks, performing data manipulation, or executing arbitrary code and gaining access to the

Palo Alto has released security updates to fix several vulnerabilities affecting multiple Palo Alto products. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, bypass security restrictions, expose user credentials, obtain sensitive information, escalate privileges, execute arbitrary commands, and gain access to the affected product. Sample of the addressed vulnerabilities: 1.

Microsoft has released its monthly patch of security updates, known as Patch Tuesday. The mentioned patch addressed one actively exploited and two publicly disclosed zero-day vulnerabilities. Microsoft has fixed (112) vulnerabilities that could allow the attacker to gain elevated privileges, perform denial of service attacks, obtain sensitive information, bypass security restrictions, or execute arbitrary code

Google has released an updated Chrome version 143.0.7499.192/.193 for Windows and Mac, and version 143.0.7499.192 for Linux. The addressed vulnerability could allow the remote attacker to convince the victim to install a malicious extension to inject scripts or HTML into a privileged page via the crafted Chrome Extension. Google Chrome Insufficient Policy Enforcement in the

F5 has released a security update to address a vulnerability affecting NGINX Ingress Controller version 5.3.0. he addressed vulnerability could allow the attacker to perform denial of service attacks, obtain sensitive information, or gain elevated privileges on the affected product. NGINX Ingress Controller Path Traversal Vulnerability (CVE-2025-14727): CVSS: 8.3 Attack Vector: Network Attack Complexity: Low

Apple has released security updates to address multiple vulnerabilities across macOS Sequoia, Tahoe, Sonoma, Ventura, and Safari. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, corrupt memory, bypass security restrictions, perform spoofing attacks, obtain sensitive information, gain elevated privileges, execute arbitrary code, and gain unauthorized access to the affected system.

SonicWall has released a security update to fix a vulnerability affecting SonicWall SMA 100 series appliances. The addressed vulnerability could allow the local attacker to bypass authorization mechanisms and gain elevated privileges. SonicWall SMA 100 Local Privilege Escalation Vulnerability (CVE-2025-40602): CVSS: 6.6 Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Consequences: