Topic: cybersecurity alert
-
Urgent WSUS Vulnerability: Patch Windows Server Now
A critical security flaw (CVE-2025-59287) in Microsoft's WSUS allows unauthorized remote code execution with system-level privileges, affecting multiple Windows Server versions. The vulnerability stems from the deserialization of untrusted data, enabling attackers to fully compromise servers, pro...
Read More » -
NHS England Warns of Active 7-Zip Exploit (CVE-2025-11001)
NHS England Digital has issued a critical security alert for an actively exploited vulnerability (CVE-2025-11001) in 7-Zip, urging immediate updates to prevent system compromise. The vulnerability, a path traversal flaw in ZIP archive processing, allows attackers to execute malicious code and was...
Read More » -
SonicWall SMA 100 Series Now Fights Rootkits
SonicWall has released a critical firmware update for its SMA 100 series to scan for and remove the OVERSTEP rootkit, patching vulnerabilities like CVE-2024-38475 in response to a sophisticated attack by threat group UNC6148. The attack involved using stolen credentials to gain unauthorized acces...
Read More » -
Critical React & Node.js Flaw Patched: Update Now (CVE-2025-55182)
A critical remote code execution vulnerability (CVE-2025-55182) affects React versions 19.0.0 through 19.2.0, requiring an immediate update to version 19.2.1. The flaw involves unsafe deserialization in React Server Components, impacting not only React but also major dependent frameworks like Nex...
Read More »