Apache Commons Text is used for processing character strings in Java apps. A critical vulnerability allows the injection of malicious code.

In HPE's OneView, malicious actors can inject malicious code from the network without authentication. An update is available.

Businesses have been warned to urgently check and protect their systems for a new vulnerability in Java code, or risk being hit with ransomware and other security issues. The warning comes following a ...

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...

More than 28,200 Citrix instances are vulnerable to a critical remote code execution vulnerability tracked as CVE-2025-7775 that is already being exploited in the wild. The vulnerability affects ...

WatchGuard has warned customers to patch a critical, actively exploited remote code execution (RCE) vulnerability in its Firebox firewalls.

In early December 2025, the React core team disclosed two new vulnerabilities affecting React Server Components (RSC). These issues – Denial-of-Service and Source Code Exposure were found by security ...

SecurityBridge, the Cybersecurity Command Center for SAP, is releasing its SecurityBridge Code Vulnerability Analyzer (CVA) powered by AI, a significant enhancement to its holistic SAP security ...

Security defenders are girding themselves in response to the disclosure of a maximum-severity vulnerability disclosed Wednesday in React Server, an open-source package that’s widely used by websites ...

ESET researchers discovered a code execution vulnerability in WPS Office for Windows (CVE⁠-⁠2024⁠-⁠7262), as it was being exploited by APT-C-60, a South Korea-aligned cyberespionage group. Upon ...