More than 200 security flaws have been collectively addressed by Microsoft, Adobe, SAP, and Ivanti as part of this month's Patch Tuesday, according to The Register.
Threat actors could exploit an already-patched high-severity flaw in the widely used Figma Model Context Protocol server, tracked as CVE-2025-53967, to facilitate remote code execution, according to The Hacker News.
Threat of Year 2036/2038 vulnerabilities detailed Threat actors could harness the "Year 2036 Problem" and "Year 2038 Problem" rollover vulnerabilities impacting systems using older Network Time Protocol versions and those that leverage a 32-bit integer for time storage, respectively, to prompt significant disruptions over a decade before they are actually triggered, according to SecurityWeek.
HackRead reports that Dell UnityVSA, the software-defined version of the firm's Unity storage system, has been impacted by a severe pre-auth command injection vulnerability, tracked as CVE-2025-36604, which could be exploited to enable command execution without the necessary logins.
