SecurityWeek

APT-Grade PDFSider Malware Used by Ransomware Groups

Attacks linked to APT and ransomware groups are relying on DLL sideloading for code execution instead of exploit-based ...

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI, an open-source, self-hosted web interface for interacting with local or remote AI language models, carried a high ...

This SmarterMail vulnerability allows remote code execution - here's what we know

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to engage in remote code execution (RCE) attacks.
The Hacker News

CISA Warns of Active Exploitation of Gogs Vulnerability Enabling Code Execution

CISA warns that hackers are actively exploiting a high-severity flaw in Gogs that can lead to remote code execution; no patch ...

Go Programming Language 1.26 Patches Several Security Flaws

The patched issues span core standard library components including archive/zip and net/http, as well as security-sensitive ...
SecurityWeek

Trend Micro Patches Critical Code Execution Flaw in Apex Central

Trend Micro has announced patches for three vulnerabilities affecting Apex Central, including a critical code execution flaw.
Bleeping Computer

Trend Micro warns of Apex One zero-day exploited in attacks

Trend Micro has warned customers to immediately secure their systems against an actively exploited remote code execution vulnerability in its Apex One endpoint security platform. Apex One is an ...
The Hacker News

Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions

Trend Micro patched a critical Apex Central on-prem Windows flaw (CVE-2025-69258) with CVSS 9.8 that allows remote code ...
CSO Online

Holes in Veeam Backup suite allow remote code execution, creation of malicious backup config files

The vendor has issued a patch to close four holes in its flagship Backup & Replication suite; version 13 users are advised to ...