Cursor AI code editor faces unpatched vulnerability enabling code execution, adding to a string of critical RCE flaws ...
SonicWall says attackers are exploiting two SMA 1000 zero-days, including a code injection flaw that could enable ...
A popular artificial intelligence (AI) coding tool can be exploited in just two clicks, allowing attackers to install permission-rich model context protocol (MCP) servers on privileged developers' ...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that attackers are exploiting vulnerabilities in ...
Discover how the Rogue Agent vulnerability in Google Dialogflow CX enabled persistent AI agent compromise, data exfiltration, ...
Six vulnerabilities in the widely used U-Boot bootloader have been discovered that could allow attackers to execute malicious ...
Researchers at Paradigm Shift have published the technical details of usbliter8, a new unpatchable iPhone BootROM vulnerability that enables arbitrary code execution on devices powered by Apple’s A12 ...
Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could ...
Remember last month when we were awed by Microsoft’s record-setting Patch Tuesday that addressed 206 CVEs? That was a quaint ...
A newly-disclosed exploit in Claude Code’s ‘auto-mode’ leaves developers facing remote code execution (RCE) vulnerabilities ...
A critical vulnerability dubbed Januscape patched in the Linux kernel-based virtualization module poses arbitrary code execution risk to multi-tenant cloud environments and virtualized enterprise ...
Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.