Remote Code Execution – Cyber Security News

Zero-click remote code execution vulnerability in Claude Desktop Extensions, featuring a malicious Google Calendar event and AI model exploit

News

Exposed: Zero-Click RCE Vulnerability in Claude Desktop Extensions Puts Over 10,000 Users at Risk

A critical zero-click RCE vulnerability in Claude Desktop Extensions exposes over 10,000 users to remote attacks via a malicious Google…

Digital graphic of a cyber padlock with text highlighting SharePoint exploitation, ToolShell malware, and CVEs 2025-53770 and 2025-53771

News Whitepapers

ToolShell Exploitation of SharePoint Vulnerabilities: Threat Landscape, Detection, and Mitigation

Jul 25, 2025 G.C.Moresi

A critical zero-day exploit chain named ToolShell is actively targeting on-premises SharePoint servers, enabling remote code execution and persistent access.…

News

Fortinet Patches Critical SQL Injection Vulnerability in FortiWeb (CVE-2025-25257)

Jul 14, 2025 G.C.Moresi

Fortinet has released a critical security patch for FortiWeb addressing CVE-2025-25257, a high-severity SQL injection vulnerability that allows unauthenticated attackers…

Graphic showing Windows Remote Code Execution vulnerability CVE-2025-32710 with a CVSS score of 8.1, warning icon, and key threat indicators on dark red background.

News

Windows Remote Desktop Services Vulnerability Allows Remote Code Execution

Jun 13, 2025 G.C.Moresi

A critical Windows Server vulnerability (CVE-2025-32710) allows unauthenticated remote code execution via RD Gateway. Organizations must patch immediately to prevent…

Image highlighting a critical remote code execution (RCE) vulnerability in VMware vCenter Server, with a warning symbol and digital network elements representing cybersecurity risks

News

VMware Urges Immediate Update to Fix Critical RCE Vulnerability in vCenter Server (CVE-2024-38812)

Oct 22, 2024 G.C.Moresi

VMware has released crucial updates to fix a critical RCE vulnerability (CVE-2024-38812) in vCenter Server. The flaw, caused by a…

News

CISA Warns of Critical Remote Code Execution Vulnerability Actively Exploited in FortiOS Devices

Oct 10, 2024 G.C.Moresi

A critical remote code execution vulnerability (CVE-2024-23113) in Fortinet's FortiOS has been actively exploited by attackers, allowing them to execute…

Smartphone with cybersecurity shield and lock representing Google's August 2024 Android security update

News

Google Patches Critical Android Zero-Day CVE-2024-36971 in August Update

Aug 6, 2024 G.C.Moresi

Google's August 2024 Android security update addresses 46 vulnerabilities, including the critical CVE-2024-36971 zero-day flaw actively exploited in targeted attacks.…

Cybersecurity alert depicting a digital world map with highlighted data points, a warning symbol, and icons for code and security patches.

News

Urgent Security Update: New Critical OSGeo GeoServer Vulnerability CVE-2024-36401 Added to CISA Exploited Catalog

Jul 16, 2024 G.C.Moresi

CISA adds CVE-2024-36401 to its Known Exploited Vulnerabilities Catalog, highlighting a critical GeoServer vulnerability allowing remote code execution. Update GeoServer…

IT team working on updating systems in a modern office with a large screen displaying Microsoft's June 2024 Patch Tuesday updates highlighting 51 vulnerabilities

News

Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability

Jun 12, 2024 G.C.Moresi

Microsoft's June Patch Tuesday fixes 51 vulnerabilities, including a Critical MSMQ flaw (CVE-2024-30080) with a CVSS score of 9.8. The…

News

Google and Mozilla Swiftly Patch Critical Zero-Day Vulnerabilities Exposed at Pwn2Own 2024

Mar 29, 2024 G.C.Moresi

Google and Mozilla rapidly addressed critical zero-day flaws in Chrome and Firefox, revealed at Pwn2Own 2024. These vulnerabilities, exploited by…

Cybersecurity News, Threat Intelligence & CISO Best Practices

Exposed: Zero-Click RCE Vulnerability in Claude Desktop Extensions Puts Over 10,000 Users at Risk

ToolShell Exploitation of SharePoint Vulnerabilities: Threat Landscape, Detection, and Mitigation

Fortinet Patches Critical SQL Injection Vulnerability in FortiWeb (CVE-2025-25257)

Windows Remote Desktop Services Vulnerability Allows Remote Code Execution

VMware Urges Immediate Update to Fix Critical RCE Vulnerability in vCenter Server (CVE-2024-38812)

CISA Warns of Critical Remote Code Execution Vulnerability Actively Exploited in FortiOS Devices

Google Patches Critical Android Zero-Day CVE-2024-36971 in August Update

Urgent Security Update: New Critical OSGeo GeoServer Vulnerability CVE-2024-36401 Added to CISA Exploited Catalog

Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability

Google and Mozilla Swiftly Patch Critical Zero-Day Vulnerabilities Exposed at Pwn2Own 2024

You missed

Chrome Under Attack: Google Patches Two Actively Exploited Zero-Day Vulnerabilities (CVE-2026-3909, CVE-2026-3910)

Phishing Fraud: What the EU Directive Really Says About Bank Liability

Google Patches Actively Exploited Chrome Zero-Day

Critical Vulnerabilities in Cloud Password Managers Undermine “Zero-Knowledge” Claims

Tag: Remote Code Execution

You missed