TeamViewer for Windows Vulnerability Allows Attackers to Delete Files with SYSTEM Privileges
A high-severity vulnerability (CVE-2025-36537) in TeamViewer’s Remote Management features allows local attackers to delete arbitrary files with SYSTEM privileges, potentially enabling full privilege escalation...
NVIDIA Megatron LM Vulnerability Allows Attackers to Inject Malicious Code
NVIDIA has issued an urgent security update for its Megatron-LM framework, addressing two high-severity code injection vulnerabilities (CVE-2025-23264 and CVE-2025-23265) that expose systems to...
New FileFix Attack Exploits Windows File Explorer to Run Malicious Commands
Cybersecurity researcher Mr. D0x has developed FileFix, a novel social engineering attack that weaponizes Windows File Explorer's address bar to execute malicious PowerShell commands....
Zimbra Classic Web Client Flaw Allows Attackers to Execute Arbitrary JavaScript
Zimbra has released urgent security patches addressing multiple high-severity vulnerabilities in its Collaboration Suite, including critical SQL injection and stored cross-site scripting flaws that...
America, Netflix, and Microsoft Breached to Insert Fake Phone Numbers
A new trend in cybercrime has emerged, targeting users seeking customer support for major brands such as Apple, Bank of America, Netflix, Microsoft, PayPal,...
