The besieged security vendor maintains the latest exploited vulnerabilities in its products are entirely linked to unspecified security issues in open-source libraries. Some researchers aren’t buying it.

Semperis CEO Mickey Bresman

The network security device vendor is making a regular appearance on CISA’s known exploited vulnerabilities catalog. Unlike its competitors, SonicWall hasn’t signed the secure-by-design pledge.

Researchers attribute the attacks to an initial access broker who is exploiting the 10.0 critical vulnerability.

While the last-minute extension averts an immediate lapse in support, rival organizations are being stood up to supplant the global vulnerability system. 

Exploited vulnerabilities have turned up in Ivanti products 16 times since 2024. That’s more than any other vendor in the network edge device space.

The company released a host of security patches Monday, including ones that address two zero-day vulnerabilities.

The software defect in the widely used open-source JavaScript framework allows attackers to bypass middleware-based authorization.

In 1999, Dave Mann and Steve Christey, two researchers from the nonprofit R&D corporation MITRE,  debuted a concept for security vulnerabilities that laid the groundwork for the…

A subgroup of Seashell Blizzard exploited public vulnerabilities in internet-facing systems, Microsoft researchers said.