SecurityVulnerability.io

Collecting, Enriching,
and Displaying
Cyber Security Vulnerabilities

Trending
Vulnerabilities

If it's trending, then it's probably important. Patch quicker!

Authorization Bypass in Next.js Framework by Vercel

CVE-2025-29927
VercelNext.js👾🟡🟣9.1CRITICAL

Spoofing Vulnerability in Microsoft Windows File Explorer

CVE-2025-24071
MicrosoftWindows 10 V...💰👾🟡7.5HIGH

Unauthenticated Remote Attackers Can Log in to Cisco Systems with Administrative Privileges

CVE-2024-20439
CiscoCisco Smart ...👾🟣9.8CRITICAL

Remote Code Execution Vulnerability in Veeam Software

CVE-2025-23120
VeeamBackup And R...💰👾9.9CRITICAL

Remote Code Execution Vulnerability in tj-actions changed-files by GitHub

CVE-2025-30066
Tj-actionsChanged-files👾🟣8.6HIGH

Arbitrary Code Execution Vulnerability in Ingress-Nginx Controller of Kubernetes

CVE-2025-1974
KubernetesIngress-nginx👾🟡9.8CRITICAL

Heap Overflow Vulnerability in Linux Kernel HFS+ File System

CVE-2025-0927
CanonicalUbuntu Linux👾7.8HIGH

Trending Cyber News

Read about it, before you get ransomware!

favicon imageReuters

Merz wins support for surge in spending, proclaiming 'Germany is back' | Reuters

German Chancellor-in-waiting Friedrich Merz said on Friday he had secured the crucial backing of the Greens for a massive increase in state borrowing, clearing the way for the outgoing parliament to approve the historic deal next week.

favicon imageHelp Net Security

Google to acquire Wiz for $32 billion - Help Net Security

Google acquires Wiz for $32 billion. Wiz’s products will continue to work and be available across all major clouds.

favicon imageWIRED

‘People Are Scared’: Inside CISA as It Reels From Trump’s Purge

Employees at the Cybersecurity and Infrastructure Security Agency tell WIRED they’re struggling to protect the US while the administration dismisses their colleagues and poisons their partnerships.

favicon imageThe Kyiv Independent

US scales down efforts in countering Russian sabotage, Reuters reports

Under former U.S. President Joe Biden, the National Security Council coordinated the effort of at least seven security agencies, who worked with European partners to disrupt Russia's escalating hybrid activities across the European continent.

favicon imageBleepingComputer

Microsoft apologizes for removing VSCode extensions used by millions

Microsoft has reinstated the 'Material Theme - Free' and 'Material Theme Icons - Free' extensions on the Visual Studio Marketplace after finding that the obfuscated code they contained wasn't actually malicious.

favicon imageCheck Point Blog

Keeping Your Head Above Water: Cyber Security and Water - Check Point Blog

Water is the essence of life, but in today’s digital world, it’s also an increasingly attractive target for cyber criminals. Water treatment plants and

Yahoo is part of the Yahoo family of brands

We, Yahoo, are part of the Yahoo family of brands. When you use our sites and apps, we use cookies to: provide...

favicon imageReuters

Alphabet to buy Wiz for $32 billion in its biggest deal to boost cloud security | Reuters

Alphabet will buy fast-growing startup Wiz for about $32 billion in its biggest deal ever, the Google parent said Tuesday, as it doubles down on cybersecurity to sharpen its edge in the cloud-computing race against Amazon.com and Microsoft.

favicon imageBleepingComputer

Sperm donation giant California Cryobank warns of a data breach

US sperm donor giant California Cryobank is warning customers it suffered a data breach that exposed customers' personal information.

favicon imageTechoreon

HTTP Flaw in Apple’s Passwords App Left iPhone Users Vulnerable to Phishing for Over 3 Years

A reported flaw in Apple's Passwords app left iPhone users vulnerable to phishing attacks for years, exposing their data to attackers.

The Blog

Advice from the first line...