The Hacker News

Microsoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-Days

Microsoft fixed 56 Windows security flaws, including an actively exploited privilege-escalation bug and two new command-injection zero-days.
Dark Reading

Microsoft Fixes Exploited Zero Day in Light Patch Tuesday

The actively exploited zero-day bug — and the one therefore that needs high-priority attention — is CVE-2025-62221, which ...
SecurityWeek

SAP Patches Critical Vulnerabilities With December 2025 Security Updates

SAP released 14 new security notes, including 3 addressing critical vulnerabilities in Solution Manager, Commerce Cloud, and ...

SAP fixes three critical vulnerabilities across multiple products

SAP has released its December security updates addressing 14 vulnerabilities across a range of products, including three ...

Microsoft December 2025 Patch Tuesday fixes 3 zero-days, 57 flaws

Microsoft' 2025 Patch Tuesday fixes 57 flaws, including one actively exploited and two publicly disclosed zero-day ...
Infosecurity Magazine

Google Releases Critical Chrome Security Update to Address Three Zero-Days

Google has released a Chrome security update to fix three zero-day vulnerabilities, including a high-severity flaw with an ...
Hosted on MSN

Security’s blind spot: the problem with taking CVE scores at face value

The modern software supply chain is operating under unprecedented pressure as new vulnerabilities emerge at a record pace. In 2024 alone, more than 33,000 new Common Vulnerabilities and Exposures ...