CRN

Red Hat Warns About Remote Code Execution Flaws Impacting Enterprise Linux

‘All versions of Red Hat Enterprise Linux (RHEL) are affected by [the vulnerabilities] but are not vulnerable in their default configurations,’ the IBM-owned company said. Red Hat warned Thursday that ...

Level-10 vuln lurking in Redis source code for 13 years could allow remote code execution

A 13-year-old critical flaw in Redis servers, rated a perfect 10 out of 10 in severity, can let an authenticated user trigger ...
Bleeping Computer

Over 660,000 Rsync servers exposed to code execution attacks

Over 660,000 exposed Rsync servers are potentially vulnerable to six new vulnerabilities, including a critical-severity heap-buffer overflow flaw that allows remote code execution on servers. Rsync is ...

Worrying Framelink MCP security flaw could let hackers execute code remotely - here's how to stay safe

Now, security researchers found that figma-developer-mpc is vulnerable to a command injection flaw that allows threat actors ...

DrayTek warns Vigor routers may have serious security flaws - here's what we know

DrayTek patches CVE-2025-10547, a firmware flaw enabling crashes or remote code execution Vulnerability affects routers with exposed WebUI or misconfigured ACLs; local access also exploitable Vigor ...
SDxCentral

VU#148244: PandasAI interactive prompt function can be exploited to run arbitrary Python code through prompt injection, which can lead to remote code execution (RCE)

PandasAI, an open source project by SinaptikAI, has been found vulnerable to Prompt Injection attacks. An attacker with access to the chat prompt can craft malicious input that is interpreted as code, ...
Bleeping Computer

Adobe fixes Acrobat Reader zero-day with public PoC exploit

A cybersecurity researcher is urging users to upgrade Adobe Acrobat Reader after a fix was released yesterday for a remote code execution zero-day with a public in-the-wild proof-of-concept exploit.