Citrix has patched CVE-2026-3055, a critical NetScaler vulnerability that allows remote, unauthenticated attackers to read sensitive memory.

Apple released an unscheduled security patch for iPhones this week, targeting a vulnerability that federal cybersecurity ...

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...

A newly disclosed vulnerability tracked as CVE-2026-32746 has put a spotlight back on a service most security teams would ...

The CVE security program used to track vulnerabilities in both hardware and software has had its federal funding removed with immediate effect. Apple is one of a number of tech giants who rely on the ...

New approach to application security in production at 11 companies analyzes code behavior at runtime rather than relying on CVEs or external defenses. PALO ALTO, Calif., March 18, ...

The latest iPhone update is a first-of-a-kind. It’s a Background Security Improvements update which is quickly installed — or ...

Apple confirms hidden iOS 26 security update, and Google confirms silent iOS 18 spyware compromise. What you need to know and ...

New provider model aims to align validated cryptography with real-time vulnerability management for regulated environments.

Cybersecurity company FuzzingLabs has accused the Y Combinator-backed startup, Gecko Security, of replicating its vulnerability disclosures and backdating blog posts. According to the company, Gecko ...

Apple has released its first Background Security Improvements update to fix a WebKit flaw tracked as CVE-2026-20643 on ...