SecurityVulnerability.io
Collecting, Enriching,
and Displaying
Cyber Security Vulnerabilities
Trending
Vulnerabilities
If it's trending, then it's probably important. Patch quicker!
Authorization Bypass in Next.js Framework by Vercel
CVE-2025-29927
VercelNext.js👾🟡9.1CRITICAL
Spoofing Vulnerability in Microsoft Windows File Explorer
CVE-2025-24071
MicrosoftWindows 10 V...💰👾🟡7.5HIGH
Remote Code Execution Vulnerability in tj-actions changed-files by GitHub
CVE-2025-30066
Tj-actionsChanged-files👾🟣8.6HIGH
Arbitrary Command Execution in mySCADA myPRO Software
CVE-2025-20014
MyscadaMypro Manager9.3CRITICAL
Unauthenticated Remote Attackers Can Log in to Cisco Systems with Administrative Privileges
CVE-2024-20439
CiscoCisco Smart ...👾🟣9.8CRITICAL
Remote Code Execution Vulnerability in Veeam Software
CVE-2025-23120
VeeamBackup And R...💰👾9.9CRITICAL
Use-After-Free Issue in Apple Products
CVE-2024-54499
AppleTV OS8.8HIGH
Remote Code Execution and Information Disclosure Vulnerability in Apache Tomcat Software
CVE-2025-24813
ApacheApache Tomcat👾🟡🟣9.8CRITICAL
Authentication Bypass Vulnerability in FortiOS and FortiProxy Products
CVE-2025-24472
FortinetFortiOS💰👾9.8CRITICAL
Get Notified When
SecurityVulnerability.io
Launches Alerting 🔔
Well keep you posted 📧
Trending Cyber News
Read about it, before you get ransomware!
ReutersMerz wins support for surge in spending, proclaiming 'Germany is back' | Reuters
German Chancellor-in-waiting Friedrich Merz said on Friday he had secured the crucial backing of the Greens for a massive increase in state borrowing, clearing the way for the outgoing parliament to approve the historic deal next week.
wiz.ioCVE-2025-1097Remote Code Execution Vulnerabilities in Ingress NGINX | Wiz Blog
Wiz Research uncovered RCE vulnerabilities (CVE-2025-1097, 1098, 24514, 1974) in Ingress NGINX for Kubernetes allowing cluster-wide secret access.
Help Net SecurityGoogle to acquire Wiz for $32 billion - Help Net Security
Google acquires Wiz for $32 billion. Wiz’s products will continue to work and be available across all major clouds.
‘People Are Scared’: Inside CISA as It Reels From Trump’s Purge
Employees at the Cybersecurity and Infrastructure Security Agency tell WIRED they’re struggling to protect the US while the administration dismisses their colleagues and poisons their partnerships.
The Kyiv IndependentUS scales down efforts in countering Russian sabotage, Reuters reports
Under former U.S. President Joe Biden, the National Security Council coordinated the effort of at least seven security agencies, who worked with European partners to disrupt Russia's escalating hybrid activities across the European continent.
Microsoft apologizes for removing VSCode extensions used by millions
Microsoft has reinstated the 'Material Theme - Free' and 'Material Theme Icons - Free' extensions on the Visual Studio Marketplace after finding that the obfuscated code they contained wasn't actually malicious.
Penn State UniversityStudent cybersecurity organization to host national Capture the Flag competition | Penn State University
The Penn State Competitive Cyber Security Organization will host its first Capture the Flag (CTF) event, SillyCTF, on March 29. The virtual cybersecurity competition is open to everyone, and college students with an ".edu" email address can win prizes.
Yahoo is part of the Yahoo family of brands
We, Yahoo, are part of the Yahoo family of brands. When you use our sites and apps, we use cookies to: provide...
ReutersAlphabet to buy Wiz for $32 billion in its biggest deal to boost cloud security | Reuters
Alphabet will buy fast-growing startup Wiz for about $32 billion in its biggest deal ever, the Google parent said Tuesday, as it doubles down on cybersecurity to sharpen its edge in the cloud-computing race against Amazon.com and Microsoft.
The Blog
Advice from the first line...