Microsoft patches a critical Outlook vulnerability tracked as CVE-2026-40361 that can be exploited for remote code execution.

One of the most severe vulnerabilities patched by Redmond is CVE-2026-41096 (CVSS score: 9.8), a heap-based buffer overflow ...

Dirty Frag is a newly disclosed Linux local privilege escalation vulnerability affecting kernel networking and ...

A new Linux zero-day exploit, named Dirty Frag, allows local attackers to gain root privileges on most major Linux ...

Fortinet and Ivanti have released fixes for multiple vulnerabilities, including critical flaws leading to code execution.

Security researchers are warning of a new “logic flaw” in Linux called Copy Fail (CVE-2026-31431), a critical vulnerability ...

Forbes contributors publish independent expert analyses and insights. Kate O’Flaherty is a cybersecurity and privacy journalist. U.S. President Donald Trump has cut funding for the global database of ...

The U.S. National Institute of Standards and Technology today announced an overhaul of how it processes cybersecurity vulnerabilities in its National Vulnerability Database . NIST is abandoning its ...

Mitre Corporation will introduce a pilot program for classifying CVEs in response to critics who contend the agency is failing to keep pace with a massive influx of CVE number requests. Mitre ...

The U.S. government today extended a contract through which it finances the CVE Program, the cybersecurity industry’s go-to database of software vulnerabilities. The U.S. Cybersecurity and ...