Microsoft patches serious Office zero-day vulnerability already being exploited in attacks

Microsoft has finally addressed a serious zero-day vulnerability affecting multiple Office versions. However, not all users ...

New Security Vulnerability Database Launches In The EU

A new vulnerability database has launched in the EU, in a bid to reduce dependence on the U.S. program. Here's what you need ...

Microsoft patches actively exploited Office zero-day vulnerability

Microsoft has released emergency security updates to patch a high-severity Office zero-day vulnerability exploited in attacks ...
The Hacker News

Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex

Cisco fixes actively exploited CVE-2026-20045 zero-day enabling unauthenticated RCE in Unified CM and Webex; CISA sets Feb 11, 2026 deadline.
Infosecurity-magazine.com

Navigating the Vulnerability Maze: Understanding CVE, CWE, and CVSS

The Forum of Incident Response and Security Teams (FIRST) officially launched the fourth version of the Common Vulnerability Scoring System (CVSS 4.0), in November 2023. CVSS 4.0, the industry ...
SecurityWeek

Organizations Warned of Exploited Linux Vulnerabilities

CISA has added to the KEV catalog two Linux vulnerabilities leading to privilege escalation and authentication bypass via ...
Security Boulevard

Microsoft’s January Security Update of High-Risk Vulnerability Notice for Multiple Products

Overview On January 14, NSFOCUS CERT detected that Microsoft released the January Security Update patch, which fixed 112 security issues involving widely used products such as Windows, Microsoft ...
CSOonline

Beyond CVE: The hunt for other sources of vulnerability intel

Were the CVE program to be discontinued, security teams would have a hard time finding one resource that would function with the same impact across the board. Here are current issues of relying on CVE ...