ETSI’s Quantum-Safe Encryption

ETSI’s Quantum-Safe Encryption

The European Telecommunications Standards Institute (ETSI) plays a pivotal role in developing standards to address the critical challenges posed by quantum computing to traditional cryptographic systems. With quantum computers expected…
CVE-2025-2857 impacts Mozilla Firefox

CVE-2025-2857 impacts Mozilla Firefox

CVE-2025-2857 is a critical vulnerability affecting Mozilla Firefox on Windows systems, allowing attackers to escape the browser's sandbox environment. This flaw is particularly concerning as it could enable malicious actors…
CVE-2024-56325 impacts Apache Pinot

CVE-2024-56325 impacts Apache Pinot

CVE-2024-56325 is a critical vulnerability affecting Apache Pinot, a real-time distributed OLAP datastore designed for low-latency analytics. This vulnerability allows remote attackers to bypass authentication mechanisms, posing significant risks to…
Apache VCL was affected by Twin vulnerabilities

Apache VCL was affected by Twin vulnerabilities

Apache VCL (Virtual Computing Lab) is a widely-used, open-source platform that provides cloud-based access to virtual computing environments. Recently, two significant vulnerabilities have been identified in Apache VCL—CVE-2024-53678 and CVE-2024-53679—that…
CVE-2025-20229 and CVE-2025-20231 impacts Splunk

CVE-2025-20229 and CVE-2025-20231 impacts Splunk

As the digital landscape continues to evolve, vulnerabilities in widely-used software systems remain a critical threat. Two such vulnerabilities, CVE-2025-20229 and CVE-2025-20231, have recently been identified in Splunk Enterprise and…
CISA KEV Catalog Update Part VII – March 2025

CISA KEV Catalog Update Part VII – March 2025

CISA's add vulnerabilities related to Sitecore CMS and Reviewdog GitHub Actions to its Known Exploited Vulnerabilities (KEV) catalog 1. Sitecore CMS Vulnerabilities CISA has identified critical vulnerabilities in the widely-used…
Google Chrome was affected by CVE-2025-2783

Google Chrome was affected by CVE-2025-2783

CVE-2025-2783 is a zero-day vulnerability affecting Google Chrome, uncovered in a targeted cyber-espionage campaign known as Operation ForumTroll. This critical flaw has allowed attackers to bypass Chrome's robust sandbox protections…
CVE-2025-21377 NTLM Flaw Detailed out

CVE-2025-21377 NTLM Flaw Detailed out

CVE-2025-21377 is a security vulnerability in Microsoft Windows that stems from weaknesses in the implementation of the NTLM (NT LAN Manager) authentication protocol. This vulnerability exposes critical weaknesses in the…