Network Security
The latest Network Security coverage — news, analysis, and updates from the WindowsNews.AI desk.
Cisco FMC Deserialization Flaw Under Active Attack; Federal Patch Deadline April 9
The Cybersecurity and Infrastructure Security Agency added CVE-2026-20131 to its Known Exploited Vulnerabilities Catalog on March 19, 2026, confirming active exploitation of a critical...
Hidden Danger in Bootloader Code: How CVE-2019-14199 Lets Attackers Corrupt Memory via UDP
A critical vulnerability in Das U-Boot, the bootloader inside countless routers, IoT devices, and embedded systems, can be triggered by a single malicious UDP packet to corrupt memory and potentially...
U-Boot NFS bug CVE-2019-14201 hit billions of devices, exposing embedded patching failures
The discovery of CVE-2019-14201 in 2019 revealed a critical vulnerability in U-Boot, the popular open-source bootloader used in billions of embedded devices worldwide. This stack-based buffer...
U-Boot NFS Vulnerabilities: Critical Bootloader Security Risks Explained
The discovery of multiple critical vulnerabilities in Das U-Boot's NFS implementation between 2019 and 2022 revealed significant security weaknesses in one of the world's most widely used...
CVE-2026-0386: Critical Windows Deployment Services Vulnerability Threatens Enterprise Networks
Microsoft has confirmed a critical new security vulnerability designated CVE-2026-0386 affecting Windows Deployment Services (WDS), marking a significant threat to enterprise network security....
Linux Kernel Panic Vulnerability Hits Aquantia Network Cards: Patch Available for CVE-2025-68301
A vulnerability in the Linux kernel’s atlantic network driver, tracked as CVE-2025-68301, can crash systems equipped with certain Aquantia/Marvell network interface cards (NICs). The flaw, which...
CVE-2025-61104: Critical FRR OSPF Vulnerability Threatens Network Infrastructure
A critical vulnerability in FRRouting's OSPF implementation has been disclosed, posing significant risks to enterprise networks, data centers, and internet service providers worldwide. Designated...
CVE-2025-61106: Critical FRR OSPF Vulnerability Threatens Network Infrastructure
A critical vulnerability in FRRouting (FRR) has been identified that could allow attackers to crash network routing daemons and potentially disrupt enterprise and service provider networks....
Kernel Flaw in Linux Network Scheduler Puts WSL2 and Mixed Environments at Risk
A use-after-free vulnerability in the Linux kernel’s network traffic-control code can be exploited by local attackers to crash systems or potentially execute arbitrary code, and patches are now...
SOAPwn Vulnerability Exposes .NET Legacy Systems to File Write & RCE Attacks
A critical vulnerability in legacy .NET SOAP client implementations has been uncovered by security researchers, exposing countless enterprise systems to potential file write operations and remote...
CVE-2025-40321: Critical Linux Wi-Fi Driver Bug Fixed - Windows Implications
A critical vulnerability in the Broadcom FullMAC wireless driver (brcmfmac) has been patched upstream in the Linux kernel, addressing a NULL pointer dereference that could cause system crashes when...
Linux Kernel Bridge Bug Can Crash Your Server: Patch CVE-2025-40297 Now
A subtle race condition in the Linux kernel's bridge code can trigger kernel oopses and system instability, and Microsoft’s Security Response Center has just published an advisory for the flaw....