Researchers have discovered ten vulnerabilities in Google’s Quick Share file-transferring utility for Android, Windows, and Chrome. Some were combined into a remote code execution attack against Quick Share for Windows. The flaws, which were exploitable when transferring files between devices, enabled unauthorized file writing, forced wifi connections, and denial of service attacks. Google has since fixed all the vulnerabilities and issued two Common Vulnerabilities and Exposures (CVE) identifiers.
Fortinet FortiWeb Vulnerability (CVE-2025-64446) Exploited in the Wild for Full Admin Takeover
Threat actors have been actively exploiting a critical path-traversal vulnerability in Fortinet’s FortiWeb web application firewall since early October 2025, allowing unauthenticated attackers to create rogue administrator
