Secure Bulletin Navigating the cyber sea with knowledge
Home > Categoria > Vulnerability
Latest news

Android’s December Patch: Zero-Day Vulnerabilities and Their Impact

2 December 2025  |  dark6  |  Vulnerability

The latest security bulletin from Google has brought forth a grim reality for Android users: multiple zero-day vulnerabilities are actively exploited by threat actors, demanding immediate attention. This...

>> read more

A Critical Design Flaws in Microsoft Azure API Management Threatens Organizations

1 December 2025  |  dark6  |  Vulnerability

Microsoft’s Azure API Management (APIM) Developer Portal, a platform commonly used for managing and securing APIs, is vulnerable to a significant security flaw that enables attackers to bypass...

>> read more

HashJack: weaponizing trust in AI browser assistants

26 November 2025  |  dark6  |  AI

A vulnerability in the way AI browser assistants handle URL fragments opens doors for malicious attacks. For years, we’ve seen AI take center stage across various industries, revolutionizing...

>> read more

A Critical Security Flaws in HashiCorp’s Provider

25 November 2025  |  dark6  |  Vulnerability

HashiCorp’s Vault Terraform provider, a cornerstone of secure secrets management for organizations worldwide, has been found with a critical security flaw. This vulnerability, tracked as CVE-2025-13357, affects users...

>> read more

Wireshark 4.6.1: critical security update addresses major vulnerabilities

24 November 2025  |  dark6  |  Vulnerability

A recent update from the Wireshark Foundation addresses critical vulnerabilities impacting the widely used network protocol analyzer, potentially exposing users to denial-of-service conditions. The vulnerability lies within the...

>> read more

Chrome: a rapid-response Zero-Day exploits type confusion vulnerabilities

18 November 2025  |  dark6  |  Vulnerability

Google’s Chrome browser has found itself squarely in the crosshairs. A critical, previously unknown vulnerability – a zero-day – is actively being leveraged in the wild, triggering a...

>> read more

FortiWeb CVE-2025-64446 PoC: a critical weapon now widely available

16 November 2025  |  dark6  |  Vulnerability

The cybersecurity landscape has shifted once again, driven by the public release of a proof-of-concept exploit targeting the critical vulnerability CVE-2025-64446 within FortiWeb devices. This disclosure, originating from...

>> read more

NVIDIA NeMo Framework: a critical cascade of vulnerabilities

14 November 2025  |  dark6  |  Vulnerability

The NVIDIA NeMo Framework, a cornerstone of conversational AI development, has recently revealed a significant and frankly concerning weakness. The disclosure, detailed in a critical security update, centers...

>> read more