A proof-of-concept (PoC) has been released for CVE-2024-53104, a high-severity Android kernel vulnerability exploited by Cellebrite in a targeted attack against a student activist.

A critical Remote Code Execution (RCE) vulnerability, CVE-2025-32434, has been discovered in PyTorch, a widely used open-source deep learning framework. Successful exploitation allows attackers to execute arbitrary commands on the host system.

A critical security vulnerability has been disclosed in Meshtastic, the open-source LoRa mesh networking platform known for enabling long-range, low-power communication without cellular or internet connectivity.

A critical stack-based buffer overflow vulnerability, tracked as CVE-2025-42599, has been identified in Active! mail. The flaw carries a CVSS score of 9.8 and is actively being exploited in the wild.

A critical vulnerability in Bubble.io, a no-code development platform, allows attackers to bypass platform restrictions and directly query the underlying Elasticsearch database.

A critical vulnerability, CVE-2024-53141, has been disclosed in the Linux kernel's netfilter ipset component. This out-of-bounds access flaw enables a full exploit chain including KASLR bypass, privilege escalation, and root shell access.

A recent security advisory from iFAX Solutions has revealed a critical vulnerability affecting the HylaFAX Enterprise Web Interface and AvantFAX. The vulnerability, CVE-2025-1782, stems from the improper sanitization of a language form element.

A critical security vulnerability has been discovered in Argo Events, an event-driven workflow automation framework for Kubernetes. The core issue lies in how Argo Events handles EventSource and Sensor custom resources.

Check Point Research has issued a warning over the active exploitation of a newly disclosed vulnerability—CVE-2025-24054—that allows attackers to leak NTLMv2-SSP hashes through specially crafted .library-ms files.

Dell has released a security advisory addressing multiple vulnerabilities in PowerScale OneFS, its scale-out network-attached storage operating system. The vulnerabilities could be exploited by malicious users to compromise affected systems.