Security Alerts
The latest Security Alerts coverage — news, analysis, and updates from the WindowsNews.AI desk.
Patch critical Edge RCE bug (CVE-2025-21279) now to block website-driven system hacks
CVE-2025-21279: Remote Code Execution Vulnerability in Microsoft Edge A newly discovered critical vulnerability (CVE-2025-21279) in Microsoft Edge could allow attackers to execute arbitrary code on...
Microsoft Edge CVE-2025-21267 Spoofing Flaw Lets Attackers Fake Trusted Domains
Microsoft Edge users face a new security threat with the discovery of CVE-2025-21267, a critical spoofing vulnerability that could allow attackers to impersonate legitimate websites. This flaw,...
CVE-2025-21404: Critical Spoofing Vulnerability Discovered in Microsoft Edge - What You Need to Know
CVE-2025-21404: New Spoofing Vulnerability in Microsoft Edge Microsoft has issued a security advisory regarding a newly discovered spoofing vulnerability in its Edge browser, tracked as...
Patch now: CVE-2025-0444 critical Skia bug in Edge risked RCE via images
CVE-2025-0444: Critical Skia Vulnerability Affects Microsoft Edge Users Microsoft Edge users face a significant security threat due to a newly discovered vulnerability in the Skia graphics library,...
CISA Warns: Patch Critical Windows Flaws Now—Active Exploits Confirmed
The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities (KEV) catalog with several critical security flaws affecting Windows systems....
CISA Advisories: Secure Windows ICS from Ransomware and Malware
The Cybersecurity and Infrastructure Security Agency (CISA) has been actively issuing advisories to help organizations secure Industrial Control Systems (ICS) running on Windows platforms. These...
ABB Drive Composer path traversal bug (CVE-2024-48510) hits Windows with 9.8 CVSS
A newly discovered critical vulnerability (CVE-2024-48510) in ABB Drive Composer software exposes Windows systems to potential attacks through a path traversal flaw. This industrial automation...
Critical Orthanc Server RCE Flaw Exposes Windows Medical Systems
A critical security vulnerability has been discovered in Orthanc Server, posing significant risks to Windows users who rely on this open-source DICOM server for medical imaging. The flaw, tracked as...
CVE-2025-0994: Critical Trimble Cityworks Flaw Threatens Windows Municipal Systems
A critical vulnerability (CVE-2025-0994) has been discovered in Trimble Cityworks, exposing municipal and utility systems to potential remote code execution attacks. This deserialization flaw in the...
EcoStruxure PME RCE flaw CVE-2024-9005: patch now to version 2024.1
A critical deserialization vulnerability (CVE-2024-9005) has been discovered in Schneider Electric's EcoStruxure Power Monitoring Expert (PME), posing significant risks to industrial control systems...
CISA Warns of Critical Vulnerability in MicroDicom DICOM Viewer: Healthcare Security at Risk
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a critical vulnerability in MicroDicom DICOM Viewer, a widely used medical imaging software. This...
CVE-2024-2658 EcoStruxure Flaw: Critical Patch Guide for Windows Systems
A critical vulnerability (CVE-2024-2658) has been discovered in Schneider Electric's EcoStruxure platform, posing significant risks to Windows-based industrial control systems. This zero-day flaw...