CISA added four actively exploited vulnerabilities to its KEV catalog, urging U.S. federal agencies to apply fixes by February 12, 2026.

As the agency’s vulnerability database buckles under a flood of submissions, it’s planning to shift some responsibilities to other parties.

The first round of SAP patches for 2026 resolves 19 vulnerabilities, including critical SQL injection, RCE, and code ...

In early 2016, the Federal Bureau of Investigation reportedly paid more than $1.3 million for a software flaw that allowed it ...

Both platforms serve as backbone infrastructure for remote work and software development, making these flaws particularly dangerous for business continuity.

Cisco fixes actively exploited CVE-2026-20045 zero-day enabling unauthenticated RCE in Unified CM and Webex; CISA sets Feb 11, 2026 deadline.

Features Black Duck’s Chief Product and Technology Officer Dipto Chakravarty on key topics like AI agents and quantum ...

A vulnerability in Microsoft’s SharePoint server software was exploited by hackers to carry out “active attacks” globally on various entities, including businesses and U.S. federal agencies, prompting ...

Forbes contributors publish independent expert analyses and insights. Software Bills of Materials (SBOMs) are crucial cybersecurity tools because they assist companies in locating, evaluating, and ...

And almost 50 more than last month.

Software vulnerability detection and security are critical in safeguarding modern digital infrastructures against increasing cyberthreats. Innovations in algorithmic analysis and machine learning have ...