Sysdig exposed how a trusted GitHub feature can silently hand control to attackers pull_request_target isn’t just risky, it’s ...

including a critical-severity heap-buffer overflow flaw that allows remote code execution on servers. Rsync is an open-source file synchronization and data transferring tool valued for its ability ...

WhatsApp told SecurityWeek that it linked the exploited FreeType vulnerability CVE-2025-27363 to a Paragon exploit.

CVE-2025-24016, a critical remote code execution vulnerability affecting Wazuh servers, has been exploited by Mirai botnets.

Popular for monitoring Docker containers, Wazuh is being exploited by two Mirai botnet variants — one of which aligns closely ...

The pro-Israel group Gonjeshke Darande follows through on its threats, publishing the full exchange code and security files, ...

A memory corruption vulnerability in the open-source libcue library can let attackers execute arbitrary code on GNOME Linux systems. Trend Micro fixed a remote code execution zero-day ...

or are classified as remote code execution vulnerabilities. The vulnerability data — along with information on open source license compliance — was included in Synopsys’ 2023 Open Source ...

This essentially allows for arbitrary code execution on a remote machine via ... It’s a good reminder to use open-source software when possible so issues like these can get resolved, and to ...