As the agency’s vulnerability database buckles under a flood of submissions, it’s planning to shift some responsibilities to other parties.

CISA added four actively exploited vulnerabilities to its KEV catalog, urging U.S. federal agencies to apply fixes by February 12, 2026.

Software vulnerability management has emerged as a cornerstone of modern cybersecurity, combining technical strategies for identifying and patching vulnerabilities with sophisticated economic models ...

Software vulnerability detection and similarity analysis are critical fields in cybersecurity, combining advanced static and dynamic analysis techniques to identify security weaknesses in software ...

The first round of SAP patches for 2026 resolves 19 vulnerabilities, including critical SQL injection, RCE, and code ...

High-severity flaws in the Chainlit AI framework could allow attackers to steal files, leak API keys & perform SSRF attacks; ...

With vulnerability exploitation nearly doubling and critical weaknesses continuing to rise, it's clear that threat actors are accelerating their efforts while software ecosystems grow more complex.

Application security posture management company Apiiro Ltd. today announced the launch of Software Graph Visualization, a new feature in its agentic application security platform that provides an ...

DOD needs to balance expediting its software acquisition process with a better system for gauging prospective vulnerabilities and mitigating harm in the event of an attack, the author of this op-ed ...

SUNNYVALE, Calif., Nov. 14, 2023 /PRNewswire/ -- Synopsys, Inc. (SNPS) (Nasdaq: SNPS) today published the 2023 Software Vulnerability Snapshot report. According to the data, analyzed by Synopsys ...

The average fix time for software security vulnerabilities has risen to eight and a half months, a 47% increase over the past five years, according to Veracode’s latest State of Software Security ...