This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs ...

The National Institute of Standards and Technology is preparing to shift its role in the globally-adopted vulnerability ...

The number of vulnerabilities to be disclosed in 2026 is almost certain to exceed last year's total, and may be heading towards 100,000, according to new analysis.

FIRST forecasts a record surge in disclosed vulnerabilities in 2026, but security researchers say most will not translate ...

Microsoft’s monthly release of security updates Tuesday included fixes for six vulnerabilities that are considered to be ...

Also today, SAP released 27 new and updated security notes, including two that address critical-severity vulnerabilities. Jonathan Stross, SAP security analyst at Pathway, drew attention to a code ...

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.

Chrome 145 was released with fixes for 11 vulnerabilities, including three high- and six medium-severity security defects.

CVE-2026-21525 is a denial-of-service vulnerability affecting the Windows Remote Access Connection Manager. “Exploitation is local, requires no privileges, and does not rely on user interaction,” ...

An industrial chemical most Americans already have in their bodies is back under the microscope. New research suggests that even low-level exposure in the womb can disrupt fetal development, ...

The Cybersecurity and Infrastructure Security Agency (CISA) in the U.S. warned of active exploitation of four vulnerabilities impacting enterprise software from Versa and Zimbra, the Vite frontend ...