Topic: windows vulnerability
-
Urgent Windows SMB Flaw Actively Exploited, CISA Warns
A critical Windows SMB vulnerability (CVE-2025-33073) is being actively exploited, allowing attackers to gain full SYSTEM-level control over unpatched systems. The flaw affects a wide range of Microsoft operating systems, including Windows Server, Windows 10, and Windows 11 up to version 24H2, an...
Read More » -
Microsoft Silent as Hackers Exploit WSUS Server Bug
A critical Windows Server Update Services (WSUS) vulnerability (CVE-2025-59287) is being actively exploited, allowing attackers to execute arbitrary code and take full control of affected systems. Microsoft issued an emergency patch after an initial fix failed, but security researchers have alrea...
Read More » -
Critical Windows 0-Day Fixed: CISA Issues Urgent Alert
A critical Windows zero-day vulnerability (CVE-2026-20805) is being actively exploited, prompting urgent patching and a CISA mandate for federal agencies to apply the fix by February 3. The flaw undermines the ASLR security mechanism by leaking a memory address, which can be chained with other bu...
Read More » -
Urgent Windows Flaw CVE-2025-9491 Actively Exploited by Hackers
A critical Windows security flaw (CVE-2025-9491) is being actively exploited by hacking group UNC6384, enabling unauthorized code execution through malicious LNK files in spearphishing campaigns targeting European diplomatic and aviation entities. The exploitation involves a multi-stage malware c...
Read More » -
Critical Docker Desktop Flaw Exposes Windows Hosts to Hijacking
A critical vulnerability (CVE-2025-9074) in Docker Desktop for Windows and macOS allows attackers to compromise the host system by executing malicious containers, bypassing the Enhanced Container Isolation feature. The flaw enables unauthorized access to host files and services via the Docker Eng...
Read More » -
CISA: Hackers Actively Exploiting WatchGuard Firewall Flaw
A critical security flaw (CVE-2025-9242) in WatchGuard Firebox firewalls is being actively exploited, prompting CISA to issue an urgent patch directive to federal agencies. The vulnerability stems from an out-of-bounds write weakness in Fireware OS, affecting over 54,000 devices globally, with fe...
Read More »