The Hacker News

Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution

Fortinet fixes critical FortiClientEMS SQL injection flaw (CVSS 9.1) enabling code execution; separate SSO bug actively exploited.

CISA flags critical Microsoft SCCM flaw as exploited in attacks

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks.
Becker's ASC

SCA Health breaks down CMS’ 560-code ASC expansion

CMS’ addition of more than 560 codes to the ASC covered procedure list for 2026 is a milestone for the industry, but SCA Health executives say the real impact, particularly for cardiovascular services ...