Singapore CSA warns of maximun severity SmarterMail RCE flaw

Singapore’s CSA warns of CVE-2025-52691, a critical SmarterMail flaw enabling unauthenticated remote code execution via arbitrary file upload. Singapore’s Cyber Security Agency of Singapore (CSA) warns of a maximum severity flaw, tracked as CVE-2025-52691 (CVSS score of 10.0), in SmarterMail. The vulnerability enables unauthenticated remote code execution via arbitrary file upload. “Successful exploitation of the […]

Cisco fixed actively exploited Unified Communications zero day

securityaffairs.co - 21/Jan 23:47

Cisco patched a critical zero-day RCE flaw (CVE-2026-20045) in Unified Communications and Webex Calling that is actively exploited in the wild. Cisco...

Cisco fixed actively exploited Unified Communications zero day

itsecuritynews.info - 22/Jan 00:34

Cisco patched a critical zero-day RCE flaw (CVE-2026-20045) in Unified Communications and Webex Calling that is actively exploited in the wild. Cisco...

Cisco fixed actively exploited Unified Communications zero day

itsecuritynews.info - 22/Jan 00:34

Cisco patched a critical zero-day RCE flaw (CVE-2026-20045) in Unified Communications and Webex Calling that is actively exploited in the wild. Cisco...

Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access

itsecuritynews.info - 22/Jan 04:15

Cisco has disclosed a critical zero-day remote code execution (RCE) vulnerability, CVE-2026-20045, actively exploited in the wild. Affecting key...

Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access

itsecuritynews.info - 22/Jan 04:15

Cisco has disclosed a critical zero-day remote code execution (RCE) vulnerability, CVE-2026-20045, actively exploited in the wild. Affecting key...

Command injection in Apache bRPC heap profiler

australiancybersecuritymagazine.com.au - 02:52

The CyberArk Labs team have identified Apache bRPC users are exposed to a critical command injection flaw in the /pprof/heap endpoint...

Actively exploited critical flaw in Modular DS WordPress plugin enables admin takeover

securityaffairs.co - 16/Jan 08:26

A critical Modular DS WordPress flaw (CVE-2026-23550) is actively exploited, enabling unauthenticated privilege escalation. Threat actors are actively...

Zoom fixed critical Node Multimedia Routers flaw

securityaffairs.co - 21/Jan 18:33

Zoom addressed a critical security vulnerability, tracked as CVE-2026-22844, that could result in remote code execution. Cloud-based video...

CISA Adds Five Known Exploited Vulnerabilities to Catalog

itsecuritynews.info - 26/Jan 21:36

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2018-14634...

CISA Adds Five Known Exploited Vulnerabilities to Catalog

itsecuritynews.info - 26/Jan 21:36

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2018-14634...

Rubriques :

Singapore CSA warns of maximun severity SmarterMail RCE flaw

Articles similaires

Cisco fixed actively exploited Unified Communications zero day

Cisco fixed actively exploited Unified Communications zero day

Cisco fixed actively exploited Unified Communications zero day

Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access

Cisco Unified Communications 0-day RCE Vulnerability Exploited in the Wild to Gain Root Access

Command injection in Apache bRPC heap profiler

Actively exploited critical flaw in Modular DS WordPress plugin enables admin takeover

Zoom fixed critical Node Multimedia Routers flaw

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA Adds Five Known Exploited Vulnerabilities to Catalog

Les derniers communiqués