critical

Google has issued a critical security update for Chrome on macOS, Windows, and Linux that fixes a zero-day CVE-2023-6345 exploit vulnerability in browser.

Microsoft issued a patch for the issue in its security update, but the bug was already under active exploit at the time as a zero-day.

WordPress has issued an automatic update to address a critical flaw in the Jetpack plugin that’s installed on over five million sites.

A critical security vulnerability has been disclosed in the Open Authorization (OAuth) implementation of the application development framework Expo.io.

Multiple high-severity vulnerabilities have been disclosed in Passwordstate password management that could be exploited by an unauthenticated remote.

Microsoft on Tuesday disclosed 56 vulnerabilities, including six critical ones and one moderate vulnerability that has been exploited.

Drupal security warning of a vulnerabilities affecting several versions of Drupal that could allow an attacker to access sensitive information.

GitLab has moved to address a critical security flaw in its service that, if successfully exploited, could result in an account takeover.

Singapore held emergency meetings with critical information infrastructure (CII) for potential threats stemming from the Log4j vulnerability.

Multiple botnets targeting thousands of publicly exposed and still unpatched Oracle WebLogic servers to steal sensitive information.