SecurityVulnerability.io
Collecting, Enriching,
and Displaying
Cyber Security Vulnerabilities
Trending
Vulnerabilities
If it's trending, then it's probably important. Patch quicker!
Spoofing Vulnerability in Windows NTLM by Microsoft
Stack-Based Buffer Overflow in Active! mail by Qualitia
Remote Code Execution Vulnerability in Erlang/OTP SSH Server
Deserialization Vulnerability in Gladinet CentreStack Portal
Apple Patches Race Condition Flaws in macOS, iOS, iPadOS, and Other Systems
Improper Authentication Control in AiCloud by ASUS
Get Notified When
SecurityVulnerability.io
Launches Alerting 🔔
Well keep you posted 📧
Trending Cyber News
Read about it, before you get ransomware!

Update PyTorch ASAP
The CVE-2025-32434 vulnerability in PyTorch can lead to remote code execution (RCE). Update the PyTorch framework to 2.6.0 version ASAP.
Hertz confirms customer info, drivers' licenses stolen in data breach
Car rental giant Hertz Corporation warns it suffered a data breach after customer data for its Hertz, Thrifty, and Dollar brands was stolen in the Cleo zero-day data theft attacks.

An Official Statement in Response to the April 9, 2025 Executive Order
Read SentinelOne's response to President Donald Trump's Executive Order dated April 9, 2025 here.
CISA extends funding to ensure 'no lapse in critical CVE services'
CISA says the U.S. government has extended funding to ensure no continuity issues with the critical Common Vulnerabilities and Exposures (CVE) program.

Federal employee alleges DOGE activity resulted in data breach at labor board
A federal cybersecurity specialist has alleged in a whistleblower statement made public Tuesday that President Donald Trump’s Department of Government Efficiency (DOGE) caused a security breach at the National Labor Relations Board and may have illegally removed sensitive data from the board.

Avoid Traveling to US or Use Burner Devices, Canadian Executives Tell Staff
Major public institutions in Canada, including a pension management firm and a leading hospital, are advising staff against traveling to the US, marking a greater erosion in the country’s longstanding trust with its neighbor.
Over 16,000 Fortinet devices compromised with symlink backdoor
Over 16,000 internet-exposed Fortinet devices have been detected as compromised with a new symlink backdoor that allows read-only access to sensitive files on previously compromised devices.

MITRE CVE Updates to Stop After U.S. Funding Expires - TechNadu
MITRE will stop adding new vulnerabilities to its database after the U.S. Government funding for the same expires on April 16.
The Blog
Advice from the first line...