CSO Online

Two-year old Oracle WebLogic Server vulnerability is being exploited

Its inclusion in the US CISA catalog of known exploited vulnerabilities is a warning to admins that patching is needed now.
Morning Overview on MSN

Microsoft just confirmed attackers are exploiting an Exchange Server zero-day to silently hijack inboxes — CVE-2026-42897 lets them rewrite emails and steal sessio…

Organizations running Microsoft Exchange Server face an active threat after a zero-day vulnerability was confirmed to allow ...
Bleeping Computer

CISA flags two-year-old Oracle flaw as actively exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched ...
Redmondmag.com

Microsoft Releases New SQL Server Updates for 2025 and 2022 Versions

Latest cumulative updates focus on stability, security and performance improvements across SQL Server deployments.