A new vulnerability database has launched in the EU, in a bid to reduce dependence on the U.S. program. Here's what you need ...

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks ...

Anyone who has WinRAR on their computer should ensure they install the latest version. Google warns of active attacks.

Microsoft released patches for CVE-2026-21509, a new Office zero-day vulnerability that can be exploited to bypass security ...

OpenSSL updates released on Tuesday patch a dozen vulnerabilities, including a high-severity remote code execution flaw.

Unity has discovered a "major security vulnerability" affecting games made using its development tool dating back to 2017. According to a Common Vulnerabilities and Exposures (CVE) analysis, "if an ...

The European Union Agency for Cybersecurity (Enisa) has debuted a European Union Vulnerability Database (EUVD) to provide “aggregated, reliable and actionable” information on newly disclosed cyber ...

What we know so far: AMD has revealed that its Zen 5 processors are affected by a critical security vulnerability that compromises the reliability of their hardware-based random number generator, ...

CERT-IN has issued a critical alert for Google Chrome desktop users, highlighting a vulnerability that could allow remote hackers to execute arbitrary code on affected systems.