Tag: Critical

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access

A maximum-severity security flaw in a WordPress plugin called Modular DS has come under active exploitation in the wild, according to …

15 January 2026

Access, Admins, Critical, DS, Flaws
New CastleLoader Variant Linked to 469 Infections Across Critical Sectors

A new name is surfacing in cyber intelligence reports that has security teams on edge. Known as CastleLoader, it has become a go-to tool …

15 January 2026

Critical, Infections, Linked, New, Variant
Fortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code Execution

Fortinet has released updates to fix a critical security flaw impacting FortiSIEM that could allow an unauthenticated attacker to achieve …

14 January 2026

Critical, Fixes, Flaws, Patch Management, Security Pro
Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow

Node.js has released updates to fix what it described as a critical security issue impacting “virtually every production Node.js app” that, …

14 January 2026

Application Security, Cloud Infrastructure, Crashes, Critical, DevOps
ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

ServiceNow has disclosed details of a now-patched critical security flaw impacting its ServiceNow AI Platform that could enable an …

13 January 2026

Access Controls, AI, Critical, Flaws, Identity Security
World Economic Forum: Deepfake Face-Swapping Tools Are Creating Critical Security Risks

The rapid advancement of deepfakes is becoming a major challenge for sustaining trust in digital identity systems, the World Economic Forum …

9 January 2026

Critical, Deepfakes, IT, Security Risks, Tools
Critical CVSS 10.0 Vulnerability Rocks Open Source Automation Platform n8n

A maximum-severity flaw in the open source automation platform n8n allows unauthenticated attackers to take full control of servers, …

9 January 2026

Critical, CVSS, IT, Platforms, Rocks
Ongoing Attacks Exploiting Critical RCE Vulnerability in Legacy D-Link DSL Routers

A newly discovered critical security flaw in legacy D-Link DSL gateway routers has come under active exploitation in the wild. The …

7 January 2026

Attacks, Critical, D-Link, DNS hijacking, Legacy
Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers

Users of the “@adonisjs/bodyparser” npm package are being advised to update to the latest version following the disclosure of a critical …

6 January 2026

2, Critical, CVSS, Files, Flaws
RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

Cybersecurity researchers have disclosed details of a persistent nine-month-long campaign that has targeted Internet of Things (IoT) …

1 January 2026

Botnets, Critical, Devices, Flaws, Hijack
IBM Warns of Critical API Connect Bug Allowing Remote Authentication Bypass

IBM has disclosed details of a critical security flaw in API Connect that could allow attackers to gain remote access to the application. …

31 December 2025

Authentication, Bug, Connect, Critical, IBM
CSA Issues Alert on Critical SmarterMail Bug Allowing Remote Code Execution

The Cyber Security Agency of Singapore (CSA) has issued a bulletin warning of a maximum-severity security flaw in SmarterTools SmarterMail …

30 December 2025

Alerts, Bug, Critical, CSA, Issues

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/critical/page/2","queryId":2}

●●●