zlib: Critical security vulnerability allows code smuggling – no update yet

A critical vulnerability in the zlib library, included in many operating systems and programs, allows code smuggling.

Patch now! Attackers are targeting HPE OneView and PowerPoint

Attackers are exploiting a malicious code vulnerability in HPE OneView. PowerPoint is exclusively attacked on macOS.
Cybernews

When workflows go rogue: critical n8n vulnerability opens door to system commands

The flaw allows authenticated n8n users with workflow-creation or modification permissions to bypass the intended security sandbox.

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could ...
Yahoo Finance

AI Creates Millions of New Code Vulnerabilities. Cycode Introduces AI Exploitability Agent to Prioritize and Fix What Matters 99% Faster.

AI is accelerating software development with tools like Cursor generating over a billion lines of code a day. Lurking in all that ...
Bleeping Computer

Apache fixes critical OFBiz remote code execution vulnerability

Apache has fixed a critical security vulnerability in its open-source OFBiz (Open For Business) software, which could allow ...
Security

SecurityBridge unveils AI-powered Code Vulnerability Analyzer to strengthen SAP security

SecurityBridge today announced the launch of its SecurityBridge Code Vulnerability Analyzer (CVA) powered by AI, a significant ...
InfoWorld

GitHub rolls out AI-powered fixes for code vulnerabilities

Copilot Autofix, a new addition to the GitHub Advanced Security service, analyzes vulnerabilities in code and offers code ...