A critical remote code execution and supply chain vulnerability was recently discovered by researchers in Gemini CLI.

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...

GitHub has patched a high-severity remote code execution vulnerability that allowed anyone with push access to a private ...

Incomplete patch for a Windows SmartScreen and Windows Shell security prompts bypass created a new bug enabling zero-click ...

The critical remote code execution flaw (CVE-2026-1731) in the remote monitoring and management tool can be exploited to ...

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.

The prompt-injection issue in the agentic AI product for filesystem operations was a sanitization issue that allowed for ...

Remote terminal units, PLCs, PoS systems, and bedside patient monitors may be susceptible to remote code execution, ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems ...

AI-enabled cyber threats are less about fully autonomous attacks and more about how AI accelerates, scales, and democratizes ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who have found exploitable instances in many commercial services and open-source ...

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...