Unauthenticated

Intel

HPE OneView Flaw Rated CVSS 10.0 Allows Unauthenticated Remote Code Execution

vm_adminDecember 18, 2025

By The Hacker News Publication Date: 2025-12-18 14:39:00 December 18, 2025Ravie LakshmananVulnerability/Business Security Hewlett Packard Enterprise (HPE) has resolved a…

Cisco

Critical RCE Flaws in Cisco ISE and ISE-PIC Allow Unauthenticated Attackers to Gain Root Access

vm_adminJuly 8, 2025

For Immediate Release 2025-06-26 07:00:00 Jun 26, 2025Ravie LakshmananVulnerability, Network Security Cisco has released updates to address two maximum-severity security…

Microsoft

50,000+ Azure AD Users Access Token Exposed From Unauthenticated API Endpoint

vm_adminJune 2, 2025

A critical security vulnerability affecting over 50,000 Azure Active Directory users has been discovered, exposing sensitive employee data through an…

Microsoft

Over 50,000 Azure AD Users’ Access Tokens Exposed via Unauthenticated API Endpoint

vm_adminJune 2, 2025

CloudSEK’s BeVigil platform has uncovered a critical security vulnerability affecting an aviation giant, where an exposed JavaScript file containing an…

Citrix

Citrix Zero-Day Bug Allows Unauthenticated RCE

vm_adminNovember 12, 2024

An unpatched zero-day vulnerability in Citrix’s Session Recording Manager allows unauthenticated remote code execution (RCE, paving the way for data…