By the time of CVE's launch, ISS (later acquired by IBM) maintained a fully public VDB, as of August 1997. A company I helped found, Repent Security Inc., also offered a commercial subscription to a ...

GCVE would enhance global collaboration, flexibility, and efficiency in tracking vulnerabilities. Duplicate entries and ...

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...

January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity ...

It never stops. Attackers continue to exploit new vulnerabilities and tricks to hack accounts or infiltrate devices. To stay ...

As the agency’s vulnerability database buckles under a flood of submissions, it’s planning to shift some responsibilities to other parties.

Microsoft forced to issue an emergency patch to fix an Office zero-day being actively exploited.

Nonprofit security organization Shadowserver has found over 6,000 SmarterMail servers exposed online and likely vulnerable to attacks exploiting a critical authentication bypass vulnerability.

Minnesota fraud scandal serves as warning for election integrity vulnerabilities, warns Justin Riemer, CEO of Restoring ...

A new service, the Global Cybersecurity Vulnerability Enumeration (GCVE), offers an alternative to the US-led CVE ...

WEF 2026 report: 87% of executives identify AI vulnerabilities as fastest-growing cyber risk. Data leaks now outweigh ...

A 9.8-severity flaw (CVE-2026-24061) in GNU InetUtils telnetd allows remote authentication bypass and root access in versions ...