Adobe issued June 2026 security updates for ColdFusion and Campaign Classic to resolve half a dozen maximum severity vulnerabilities.
The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system.
ColdFusion 2023 Update 21, 2025 Update 10, and ACC v7 build 9397 fix code execution bugs; no exploits reported.
CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution ...
Sentire says attacks began June 29 against a CVSS 9.6 OS command injection flaw that enables unauthenticated code execution.
Nearby attackers can crash Apple's AirDrop before users see a file transfer request, temporarily disabling AirPlay, Handoff, ...
Microsoft's prediction that attackers probably wouldn't rush to exploit a newly-patched SharePoint bug hasn't aged especially ...
Adobe has released security patches for seven maximum-severity vulnerabilities in the ColdFusion web app development platform ...
A newly disclosed use-after-free in the Linux kernel's epoll code, CVE-2026-46242, lets an unprivileged user get root on ...
What happened CISA added a Cisco Unified Communications Manager Server vulnerability to its Known Exploited Vulnerabilities catalog after the flaw was observed being exploited in attacks. The ...
CERT-In has warned Apple users about critical security flaws affecting iPhones, iPads, Macs and Safari. Users are advised to ...
Google released a Chrome update addressing 382 security bugs, including sandbox-escape risks. Users and IT teams should ...