Analysis of two arbitrary code execution vulnerabilities affecting WPS Office. Demystifying CVE-2024-7262 and CVE-2024-7263. Romain Dumont. 28 Aug 2024 • , 14 min. read.

Activision has temporarily pulled the Microsoft Store version of Call of Duty: WWII from availability while it investigates security concerns. The company hasn’t shared much detail about the reason ...

Threat actors leverage exposed JDWP interfaces for code execution and cryptocurrency mining, with global scanning activity ...

"A vulnerability within the Veeam Updater component that allows an attacker to utilize a Man-in-the-Middle attack to execute arbitrary code on the affected appliance server with root-level permissions ...

A high-severity vulnerability in GitHub Enterprise Server could have allowed remote attackers to execute arbitrary code.

A misconfigured default in the MCP inspector tool allows attackers to execute arbitrary commands via CSRF and legacy browser ...

Overview. Recently, NSFOCUS CERT detected that Elastic issued a security bulletin to fix the arbitrary code execution vulnerability caused by Elastic Kibana prototype contamination (CVE-2025-25014); ...

A patch has been released for a newly discovered vulnerability in RARLAB’s WinRAR software that could allow hackers to ...

Multiple security vulnerabilities currently exist in HP Support Assistant software, which could enable remote attackers to execute arbitrary code on a vulnerable machine running Windows operating ...

Hackers are now attacking systems to carry out crypto mining activities, according to a report from researchers from cloud ...

The flaw allows attackers to bypass the Web Content sandbox that Apple’s Safari browser uses to isolate web content from the rest of a system and execute arbitrary code on a target system. The issue ...

An actively exploited type confusion vulnerability in the Google Chrome web browser needs immediate attention from users ...