The vulnerability of the Windows SmartScreen security function in Microsoft Windows operating systems allows a hacker to circumvent existing security restrictions.

The vulnerability of the Windows SmartScreen security function in Microsoft Windows systems relates to a breach of data protection mechanisms. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent existing security restrictions...

The vulnerability of the BitLocker data protection function in Microsoft Windows operating systems allows attackers to circumvent existing security restrictions.

The vulnerability of the BitLocker data protection function in Microsoft Windows operating systems is related to a breach of the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent existing security restrictions...

The vulnerability of the Windows User-Mode Driver Framework (UMDF) in Microsoft Windows operating systems allows a hacker to disclose sensitive information that is protected by this framework.

The vulnerability of the Windows User-Mode Driver Framework UMDF in Microsoft Windows is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to disclose protected information...

Securing Transformer-Based AI Execution Via Unified TEEs and Crypto-Protected Accelerators

Recent advances in Transformer models, e.g., large language models LLMs, have brought tremendous breakthroughs in various artificial intelligence AI tasks, leading to their wide applications in many security-critical domains. Due to their unprecedented scale and prohibitively high development cos...

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system allows attackers to circumvent existing security restrictions.

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system relates to the loading of unreliable external data alongside reliable data. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

The vulnerability of the Windows GDI component in Microsoft Windows operating systems allows attackers to disclose protected information.

The vulnerability of the Windows GDI component in Microsoft Windows systems is related to a breach of data protection mechanisms. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose protected information...

The vulnerability of the trusted execution environment of the Virtualization-Based Security (VBS) Enclave in Microsoft Windows operating systems allows attackers to enhance their privileges.

The vulnerability of the trusted execution environment for the Virtualization-Based Security VBS Enclave in Microsoft Windows operating systems is related to a breach of the data protection mechanism. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system allows attackers to circumvent existing security restrictions.

The vulnerability of BitLocker’s data protection function in the Microsoft Windows operating system is related to a breach of the data protection mechanism. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...

Understanding the NCSC’s New API Security Guidance

Legislative, regulatory, and advisory bodies the world over are waking up to the importance of API security. Most recently, the UK’s National Cyber Security Centre NCSC has published detailed guidance on best practices for building and maintaining secure APIs. In this blog, we’ll break down that...

The vulnerability of the Windows Imaging Component (WIC) framework in Windows operating systems allows attackers to disclose protected information.

The vulnerability of the Windows Imaging Component WIC framework in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of the software platform for managing execution environments of Apache CloudStack, related to insufficient protection of operational data, allows attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the software platform that manages virtual machine environments in Apache CloudStack is related to insufficient protection of operational data. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected...

CVE-2025-48818 Windows BitLocker Security Feature Bypass Vulnerability

...

CVE-2025-48800 Windows BitLocker Security Feature Bypass Vulnerability

...

CVE-2025-48003 Windows BitLocker Security Feature Bypass Vulnerability

...

CVE-2025-48001 Windows BitLocker Security Feature Bypass Vulnerability

...

CVE-2025-48001 Windows BitLocker Security Feature Bypass Vulnerability

...

ROS-20250707-04

Vulnerability in FontFaceSet interface of Mozilla Firefox, Firefox ESR browsers is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service WebCompat extension vulnerability in Mozilla Firefox, Firefox ES...

The vulnerability of the Segnetics SMConfig system configuration tool lies in the lack of protection for transmitted data, which allows attackers to disclose the protected information.

The vulnerability of the Segnetics SMConfig system configuration tool is related to the lack of protection for transmitted data. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by reading the HTTP cookie header...

The vulnerability of the XML Services component of the Oracle BI Publisher software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the XML Services component of the Oracle BI Publisher software for creating reports is related to insufficient protection of operational data. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to protected information...

Dell NetWorker Algorithm Downgrade Vulnerability

Dell NetWorker is data protection software provided by Dell. Dell NetWorker suffers from an algorithm degradation vulnerability that can be exploited by an attacker to cause information disclosure...