SecurityWeek

Critical Vulnerability Patched in jsPDF

A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and ...
The Hacker News

Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

A critical CVSS 9.2 flaw in AdonisJS bodyparser lets attackers write arbitrary files via path traversal when uploads are ...
bitnewsbot

Active Exploitation of 7-Zip CVE-2025-11001 ZIP Flaw Alert

A critical vulnerability, CVE-2025-11001, affecting 7-Zip has been actively exploited since its public disclosure. The flaw allows remote code execution via crafted ZIP files manipulating symbolic ...
Computer Weekly

How to manage Active Directory security

Even after 25 years, Microsoft Active Directory (AD) remains the backbone of identity and access management in up to 90% of enterprise IT environments worldwide, making it a high-value target for ...
winbuzzer.com

New WinRAR Zero-Day Flaw is Actively Exploited by Russian Hackers

Russian-linked hacking groups are exploiting a critical zero-day vulnerability in the popular WinRAR file compression utility, putting millions of users at risk. The flaw, identified as CVE-2025-8088, ...
GitHub

Due to directory traversal vulnerability in SAP S/4HANA ...

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack vector: More severe the more the remote (logically and ...
TweakTown

WinRAR 'high-risk' exploit discovered, make sure you update to the latest release

TL;DR: WinRAR has a critical security vulnerability (CVE-2025-6218) allowing remote code execution via directory traversal in Windows versions. This exploit risks sensitive data and system integrity.
SiliconANGLE

Traversal launches with $48M to tackle site reliability and observability with AI

Traversal Inc., a startup building an artificial intelligence platform focused on site reliability engineering and observability, today announced its launch with $48 million in funding. The funds were ...
AOL

Traversal emerges from stealth with $48 million from Sequoia and Kleiner Perkins to reimagine site reliability in the AI era

They met at 10 p.m. each weeknight, after class at Columbia University. Sometimes talking over Zoom until 2 AM, Anish Agarwal, Raaz Dwivedi, Ahmed Lone, and Raj Agrawal talked about what it might mean ...
Microsoft

Marbled Dust leverages zero-day in Output Messenger for regional espionage

Since April 2024, the threat actor that Microsoft Threat Intelligence tracks as Marbled Dust has been observed exploiting user accounts that have not applied fixes to a zero-day vulnerability ...
usace.army.mil

NETCOM announces transition to Army Unified Directory Service to enhance capabilities for Soldiers

Fort Huachuca, AZ –The United States Army Network Enterprise Technology Command (NETCOM) is excited to announce the implementation of the Army Unified Directory Service (AUDS), a cutting-edge ...