CVE analysis, exploit assessments, and patch guidance for critical security vulnerabilities.
377 items
mcp-pinot shipped with OAuth disabled by default and bound to 0.0.0.0, allowing unauthenticated network attackers to invoke MCP tools and execute queries against downstream Pinot clusters using server credentials. This is a critical authentication bypass with CVSS 10.0.
Nezha v1.14.13–v1.14.14 and v2.0.0–v2.0.9 fail to validate stream ownership on WebSocket endpoints, allowing any authenticated user to hijack terminal and file-manager sessions by guessing or obtaining a valid stream UUID, resulting in cross-tenant remote code execution.
Amazon Q contained a flaw allowing attackers to steal AWS credentials by poisoning code repositories that the AI assistant indexes and processes. The vulnerability has been patched, but highlights risks in AI-assisted development workflows where models ingest untrusted code.
The golang.org/x/crypto SSH known_hosts library fails to validate revocation status of Certificate Authority signature keys, allowing attackers to authenticate using revoked CA credentials. Defenders must patch immediately as this bypasses a critical authentication control.
A regression in golang.org/x/crypto/ssh allows attackers to bypass source-address validation by invoking non-public-key callbacks, circumventing the CVE-2024-45337 fix. This enables unauthorized SSH access in misconfigured servers.
OpenAM's WebAuthn module deserializes untrusted Java objects from user-writable storage attributes, enabling pre-auth RCE if the storage backend becomes attacker-controllable. Defenders must audit attribute permissions and enforce server-managed storage isolation.
OpenAM versions ≤16.0.6 allow unauthenticated attackers to write arbitrary data to the Liberty Discovery store with admin privileges, bypassing identity ACLs. This enables persistent user profile tampering and potential service routing manipulation in deployments consuming Liberty metadata.
Attackers are exploiting autonomous AI agents by injecting malicious content into trusted data sources, using techniques ranging from hidden code injection to cognitive state manipulation. This represents a new attack surface where data integrity failures can compromise AI decision-making at scale.
CISA has confirmed active exploitation of CVE-2025-67038, a code injection vulnerability in Lantronix EDS5000 Series devices with a CVSS score of 9.8 that enables remote code execution. Federal agencies are required to patch by June 26, 2026.
A chain of two authentication design flaws allows unauthenticated attackers to read the admin configuration file and reuse the SHA-1 password hash directly as an API signing key, bypassing authentication entirely when normal user password is left empty (default configuration).
Anthropic's Mythos model identified vulnerabilities in classified US government systems during testing, though exploitation capability within the testing window remains unclear. This highlights potential risks when deploying advanced AI models against sensitive infrastructure.
CVE-2026-20230, a server-side request forgery flaw in Cisco Unified Communications Manager, is now actively exploited following public proof-of-concept availability since June. Organisations running affected UCM instances face network reconnaissance and potential lateral movement risks.
OpenDJ's JMX RMI connector deserializes untrusted data before authentication, enabling unauthenticated RCE via malicious serialized objects. This PoC validates a critical pre-auth bypass affecting all versions through 5.1.0.
scim-patch ≤0.9.0 allows attackers to pollute Object.prototype through crafted SCIM PATCH requests, enabling privilege escalation and logic bypass across entire Node processes that process untrusted IdP input.
Unit 42 has disclosed a bucket hijacking technique that exploits global namespace uniqueness across cloud storage systems, allowing attackers to intercept and exfiltrate data by claiming abandoned or predictably-named buckets before legitimate organisations do.
Squidbleed is a memory disclosure vulnerability in Squid proxy that can leak sensitive user data from process memory, affecting organisations using Squid for HTTP caching and filtering. The flaw's age and ubiquity in enterprise networks creates significant exposure.
Attackers are exploiting an unauthenticated information disclosure flaw in Gravity SMTP (CVE-2026-4020) to extract API keys, OAuth tokens, and configuration secrets from roughly 100,000 WordPress installations. The vulnerability remains exploitable despite patches because many sites run unpatched versions.
An Insecure Direct Object Reference (IDOR) vulnerability in Langflow's `/api/v1/responses` endpoint allows authenticated attackers to access and execute flows owned by other users by manipulating flow UUIDs. The vulnerability bypasses user ownership validation when flows are referenced by UUID rather than endpoint name.
Path traversal via symlink injection in tar extraction allows unauthenticated file disclosure, JWT secret theft, and remote code execution in Langflow RAG deployments. Organizations must patch immediately as exploit chain is straightforward and affects multiple file-handling components.
OpenRemote Manager's bulk removeAlarms() endpoint fails to validate alarm ownership across tenants, allowing authenticated users to delete alarms in any realm. This breaks multi-tenant isolation and enables destruction of critical safety and security alerts.
SecurityWeek reports several significant security issues including an Apple Beats eavesdropping flaw patch, an unpatched GCP Config Connector vulnerability enabling account takeover, an Android TV botnet linked to an Israeli firm, and closure of the DOT's Delta Air Lines CrowdStrike incident investigation.
Researchers have demonstrated a working exploit (usbliter8) that achieves arbitrary code execution in the immutable SecureROM of Apple A12 and A13 chips. Because the affected code is burned into silicon at manufacture, no software update can patch this vulnerability, affecting millions of devices permanently.
Crawl4AI's download handler fails to sanitize filenames from HTTP headers and page-controlled sources, allowing path traversal to write arbitrary files with attacker content. Pre-authenticated exploitation is possible via the Docker `/crawl` endpoint, enabling remote code execution through shell rc-file overwriting, SSH key injection, or cron job placement.
Crawl4AI's unauthenticated Docker API accepts user-supplied Chromium launch arguments that bypass a denylist-based filter, enabling arbitrary command execution as the container user. The vulnerability class (argument injection + incomplete denylist) is a known anti-pattern that defenders should watch for in containerized applications.
gemini-mcp-tool versions prior to 1.1.6 fail to validate @file prompt directives, enabling arbitrary file exfiltration and OS command injection on Windows. Defenders must patch immediately and audit logs for suspicious @file references.
F5 released patches for two critical remote code execution vulnerabilities in NGINX Open Source, with CVE-2026-42530 being a use-after-free in the HTTP/3 module exploitable by unauthenticated remote attackers. This affects organisations running NGINX with HTTP/3 support enabled.
The `/api/v1/upload/{flow_id}` endpoint in Langflow lacks authentication and input validation, allowing unauthenticated attackers to exhaust server disk space and extract absolute file paths for further reconnaissance.
HAPI FHIR's saxonTransform() methods instantiate bare Saxon TransformerFactory instances without XXE protections, enabling XML External Entity injection for file disclosure and SSRF attacks. This bypasses the library's own hardened factory pattern documented in XMLUtil.
Missing authorization check on POST endpoint for attaching associated records allows authenticated low-privilege users to bypass UI controls and manipulate authorization-bearing relationships, leading to privilege escalation and cross-tenant data exposure.
A flaw in Google's Vertex AI Python SDK allows attackers to hijack model uploads through bucket squatting and achieve remote code execution across tenant boundaries via unsafe pickle deserialization. This affects any organisation using the SDK to upload models to Google Cloud.
CVE-2026-20253, a CVSS 9.8 critical vulnerability in Splunk Enterprise versions before 10.2.4 and 10.0.7, permits unauthenticated attackers to perform arbitrary file operations and achieve remote code execution, affecting a primary target for enterprise threat actors seeking post-compromise persistence and reconnaissance.
Workspace-scoped builders can escalate to global admin by directly injecting role properties into the /api/public/v1/roles/assign endpoint, bypassing authorization checks. This represents a complete tenant-wide privilege escalation from a restricted app-level role.
AuthInjectionMiddleware fails to enforce authentication, allowing unauthenticated callers to invoke MCP tools and trigger error responses that leak the operator's Meta access token as a query parameter in JSON-RPC responses.
CodeIgniter4's `ext_in` validation rule checks MIME-guessed extensions rather than actual filename extensions, allowing attackers to upload executable files (e.g., PHP shells) that bypass validation. This leads to arbitrary code execution when uploads are stored in web-accessible directories with script execution enabled.
Two independent security teams demonstrated that OpenClaw can be coerced into executing arbitrary code and exfiltrating sensitive data through embedded instructions hidden in benign-looking vCards, contacts, and location data. The attack requires no authentication and exploits the agent's unsafe parsing and execution model.
Go REST API boilerplate ships with hardcoded JWT secret 'random' in both template and code defaults, allowing attackers to forge valid authentication tokens and bypass access controls entirely.
CVE-2024-5027, a path traversal vulnerability in Langflow (CVSS 8.8), is being actively exploited in the wild to write arbitrary files to exposed servers. Organisations running unpatched instances face immediate risk of system compromise.
The shell-quote library fails to escape line terminators in object token `.op` fields, allowing callers who pass attacker-controlled object tokens to `quote()` to inject shell commands. The vulnerability exists in documented API surface and bypasses the intended shell-safety boundary.
Microsoft's latest Patch Tuesday addressed 200 vulnerabilities, but three were publicly disclosed before patches became available, creating an active exploitation window. This pattern highlights coordination failures in coordinated disclosure processes.
Six vulnerabilities in protobuf.js, a widely-used Protocol Buffers library for JavaScript/TypeScript, allow remote code execution and denial-of-service attacks when processing malicious protobuf schemas or payloads. The widespread adoption of protobuf.js in Node.js applications makes this a significant supply-chain concern.
Anyquery's chrome_tabs plugin fails to escape user-supplied URLs before interpolating them into AppleScript templates executed via osascript, allowing authenticated local users to inject arbitrary AppleScript commands and achieve OS-level code execution on macOS.
nebula-mesh API endpoints lack per-resource ownership validation, trusting only bearer tokens for authorization. This allows any operator API key to escalate privileges by minting admin keys or hijacking resources across tenant boundaries.
Google patched CVE-2026-11645, a Chrome zero-day reported by an anonymous researcher in late April, marking the fifth such vulnerability exploited in 2026. The frequency warrants investigation into whether this reflects genuine market targeting or a shift in responsible disclosure practices.
CVE-2026-23111, a use-after-free in the Linux kernel's nf_tables packet-filtering subsystem, has a public working exploit that enables local privilege escalation to root and container escape. The vulnerability was patched upstream in February 2026, but widespread deployment of the fix remains incomplete.
A critical remote code execution flaw in the Everest Forms Pro WordPress plugin is under active exploitation, allowing attackers to achieve complete administrative control of affected websites.
Two independent authorization flaws in Shopper admin panel team settings allow any authenticated user to escalate from read-only to full administrator, remove legitimate admins, and take over role-based access control entirely.
An unauthenticated attacker can inject malicious JavaScript into WebSocket broadcast messages that execute in the browsers of all connected administrators. The vulnerability stems from unsanitized query parameters being stored and propagated to authenticated users without validation.
A compromised npm package (@cap-js/openapi v1.4.1) was published containing malicious code that harvests machine-local credentials and attempts self-propagation. Organizations must assume all credentials accessible during installation are compromised.
Unsanitized user input in the log_file_name parameter allows command injection into Stata execution contexts, enabling arbitrary code execution. This PoC demonstrates a critical trust boundary violation in parameter handling that bypasses existing security guards.
Cisco disclosed CVE-2026-20245, a root-level remote code execution vulnerability in SD-WAN products currently exploited in the wild with no patch available. This marks the seventh SD-WAN zero-day from Cisco in 2026, indicating either a sustained adversarial campaign or significant product security deficiencies.
Google patched 124 Android vulnerabilities in June 2026, including CVE-2025-48595, a high-severity privilege escalation flaw in the Framework component already under active exploitation in targeted attacks. This represents an unauthenticated, interaction-free privilege escalation affecting a core system component.
Vitest UI server on Windows fails to properly normalize file paths before security checks, allowing unauthenticated attackers to read arbitrary files via the `/__vitest_attachment__` endpoint when the server is network-exposed. This affects developers running Vitest in UI or Browser Mode on Windows systems.
PraisonAI Platform allows any workspace member to inject arbitrary users (including attacker-controlled accounts) as workspace owners by bypassing role-assignment authorization checks. This enables immediate privilege escalation and cross-tenant compromise within a workspace.
Attackers discovered a method to manipulate Meta's AI support assistant into resetting Instagram account passwords without proper verification, leading to defacement of prominent accounts including those of the Obama White House and U.S. Space Force. Instructions circulated on Telegram, indicating active exploitation in the wild.
CVE-2026-8732 in WP Maps Pro allows unauthenticated attackers to create administrative accounts, granting complete control of affected WordPress sites. Active exploitation has been observed in the wild.
A authentication bypass vulnerability in WP Maps Pro allows unauthenticated attackers to create administrative accounts on WordPress sites. Active exploitation is reported in the wild.
YAMCS yamcs-core 5.12.7 contains a user enumeration vulnerability allowing attackers to discover valid usernames through differential authentication responses. This information disclosure facilitates targeted account compromise and social engineering attacks.
YAMCS yamcs-core 5.12.7 lacks rate limiting controls on endpoints, enabling attackers to conduct brute-force attacks against authentication mechanisms and launch denial-of-service attacks. Defenders must implement protective controls at application and network layers.
A local privilege escalation flaw in the Linux kernel's CIFS implementation allows attackers to forge authentication key descriptions and exploit the kernel's key request mechanism to gain root access. The vulnerability affects multiple Linux distributions.
CVE-2026-0257, a medium-severity authentication bypass in Palo Alto Networks PAN-OS and Prisma Access GlobalProtect, is now under active exploitation in the wild. Attackers are using it to establish unauthorised VPN connections and breach corporate networks.
PraisonAI Platform exposes a chain of authorization bypasses allowing any authenticated user to read/modify/delete cross-tenant resources and escalate their own privileges to admin or owner, enabling complete workspace takeover with only open registration.
PraisonAI Platform defaults to a publicly-known JWT signing secret when environment variables are not explicitly configured, allowing attackers to forge authentication tokens and impersonate any user including admins. This vulnerability is trivially exploitable in any default deployment.
Any workspace member can unilaterally promote themselves or others to owner role via an unauthenticated authorization check in the PATCH /workspaces/{id}/members/{user_id} endpoint. This is a complete privilege escalation requiring only workspace membership and a single HTTP request.
Permiso Security disclosed a vulnerability in ChatGPT's web summary renderer that trusts Markdown links and images, allowing attackers to inject prompts and construct phishing attacks against users relying on the feature.
A critical remote code execution vulnerability in Gogs (CVSS 9.4) permits any authenticated user to execute arbitrary code on self-hosted Git service instances. This significantly lowers the barrier to exploitation since attackers only need valid credentials rather than unauthenticated access.
Cisco Talos discovered four heap-based buffer overflow vulnerabilities in MediaArea's MediaInfoLib, a widely-used media metadata extraction library embedded in numerous applications. Exploitation could lead to remote code execution when processing malicious media files.
XWiki's ssx and jsx endpoints fail to sanitize the resource parameter when leading slashes are present, allowing unauthenticated path traversal to read sensitive files like WEB-INF/xwiki.cfg. The PoC demonstrates reliable, low-complexity exploitation that could expose database credentials and system configuration.
The POST /wikis/{wikiName} endpoint in XWiki Platform lacks authentication checks, allowing unauthenticated attackers to import XAR files and modify wiki content. This is a high-impact authentication bypass affecting content integrity and availability.
A previously unknown vulnerability in KnowledgeDeliver LMS was exploited in the wild to install Godzilla web shells on victim servers. This represents active compromise of educational infrastructure with potential for persistent access and lateral movement.
A vulnerability in Ghost CMS has been exploited to compromise over 700 websites, including those of Harvard, Oxford, and DuckDuckGo. This represents a significant supply-chain risk given Ghost's prevalence among high-profile organisations.
A high-severity flaw in Digital Knowledge's KnowledgeDeliver LMS, stemming from hard-coded ASP.NET machine keys, was exploited in the wild to install Godzilla web shells and subsequently Cobalt Strike Beacon. The vulnerability has been patched but likely saw active abuse before disclosure.
Mandiant identified a critical remote code execution vulnerability in KnowledgeDeliver, a Learning Management System widely deployed in Japanese educational institutions, exploitable through unsafe .NET ViewState deserialisation. Active exploitation has been confirmed in the wild.
Wireshark 4.6.6 was released on 24 May, patching one vulnerability alongside 11 bug fixes. This is routine vendor maintenance with limited security impact.
A DNS vulnerability called Underminr affects approximately 88 million domains and allows attackers to hide malicious traffic behind legitimate domain names, bypassing DNS filtering and exfiltrating data undetected.
An unauthenticated SQL injection flaw in YesWiki's FormManager allows attackers to inject arbitrary SQL via the `bn_id_nature` parameter, enabling full database exfiltration including password hashes. The PoC demonstrates reliable, pre-authentication exploitation against default installations.
FileBrowser's public PATCH endpoint joins user-controlled paths with the share root before sanitization, allowing traversal outside the intended directory. Public shares with modification enabled are immediately exploitable.
Nezha's cron scheduling API routes are protected by common authentication (any logged-in user) rather than admin-only gates, combined with a permission check bypass that allows RoleMembers to execute arbitrary commands on all monitored servers across tenant boundaries.
Drupal has confirmed active exploitation of CVE-2026-9082 with security firms detecting attacks against thousands of websites shortly after public disclosure. The rapid weaponisation indicates this is a severe vulnerability with immediate real-world impact.
A missing single-quote escape in Twig's Compiler::string() method allows attackers to break out of PHP string literals via malicious {% use %} template names, achieving unauthenticated remote code execution even in sandboxed environments.
BoxLite's read-only mount implementation relies on MS_RDONLY flag applied post-boot rather than kernel-level enforcement, allowing container processes with unrestricted capabilities to remount directories as read-write. This breaks sandbox isolation in scenarios where untrusted code accesses host credentials, configuration, and source code.
Insufficient validation in Cisco Secure Workload's REST APIs allows unauthenticated remote attackers to obtain Site Admin privileges. This represents a complete authentication bypass affecting a platform commonly used for workload security and compliance monitoring.
Cisco patched a CVSS 10.0 flaw in Secure Workload REST API that permits unauthenticated remote attackers to access sensitive data through insufficient validation and authentication controls. Organisations running Secure Workload must patch immediately as the vulnerability requires no credentials or user interaction.
Google publicly exposed technical details of an unpatched Chromium vulnerability that permits JavaScript execution after browser closure, enabling remote code execution. Early disclosure before a fix is available significantly increases attacker adoption risk.
Compromised versions of @cap-js database packages (sqlite, postgres, db-service) published April 29, 2026 harvested credentials and attempted self-propagation. Any system with these versions installed must assume all local credentials (npm tokens, cloud keys, SSH keys, GitHub PATs) are compromised.
An unauthenticated attacker can bypass JWT session validation and rewrite upstream authority headers by exploiting a shared header check with a predictable or hardcoded router key, allowing unauthorized access to backend services including external APIs.
Coder's Azure identity validation fails to verify PKCS#7 signatures, allowing attackers to forge identity claims and steal workspace agent tokens without authentication. This enables downstream credential theft including SSH keys, OAuth tokens, and workspace secrets.
Cisco Talos disclosed 11 vulnerabilities across four vendors, with eight in TP-Link networking equipment alongside single flaws in Adobe Photoshop, OpenVPN, and Norton VPN. All have been patched by vendors following Cisco's coordinated disclosure policy.
Verizon's 2026 Data Breach Investigations Report reveals vulnerability exploitation has become the leading breach vector, surpassing credential theft, driven by accelerated attack timelines, delayed patch deployment, and increasing ransomware sophistication.
A zero-day vulnerability in Huawei equipment was exploited to take down Luxembourg's entire telecoms network in 2023. The flaw remains unpatched and unacknowledged by Huawei, creating ongoing risk for other operators using affected equipment.
Eight git repository management endpoints in Arcane lack admin role enforcement, allowing any authenticated user to read, modify, and exfiltrate stored Git credentials. This breaks the confidentiality and integrity of GitOps configurations and enables lateral movement via credential theft.
The mistralai PyPI package v2.4.6 was compromised with a malicious dropper that executes on module import on Linux systems, bypassing the legitimate release pipeline via PyPI Trusted Publishing. This represents a high-impact supply chain attack affecting all systems that installed this specific version.
Four chained vulnerabilities in OpenClaw permit attackers to extract credentials, bypass sandbox isolation, and establish persistent backdoor access. This represents a complete compromise pathway from initial execution to system persistence.
Ivanti, Fortinet, SAP, VMware, and n8n have released patches for multiple remote code execution and privilege escalation vulnerabilities, with Ivanti Xtraction's CVE-2026-8043 (CVSS 9.6) enabling arbitrary code execution through external file name control. This coordinated patch release suggests these flaws were likely discovered through vulnerability coordination channels.
YellowKey, a publicly disclosed exploit, reliably bypasses Windows 11 BitLocker default configurations by exploiting TPM-based key storage, but requires physical device access. This substantially weakens encryption guarantees for organisations relying on BitLocker as a mandatory protection.
A researcher has released a working exploit (MiniPlasma) for an unpatched 2020 Windows CVE, based on original proof-of-concept code. This exposes organisations still running vulnerable systems to immediate privilege escalation attacks.
Researcher Chaotic Eclipse has released a working exploit for MiniPlasma, a Windows privilege escalation zero-day in the Cloud Files Mini Filter Driver (cldflt.sys) that grants SYSTEM access on fully patched systems. This represents a complete bypass of Windows security controls and poses immediate risk to all affected Windows installations.
A proof-of-concept exploit has been released for DirtyDecrypt, a recently patched local privilege escalation vulnerability in the Linux kernel's rxgk module. Attackers with local access can now more easily achieve root-level code execution on affected systems.
Security researchers demonstrated previously unknown exploits at Pwn2Own Berlin 2026, earning $1.3 million in total bounties across multiple platforms including Windows, Linux, VMware, Nvidia, and AI systems. The event highlights an active market for zero-day vulnerabilities and signals emerging attack surface in AI products.
Security researchers earned $1.3m by demonstrating 47 zero-day exploits at Pwn2Own Berlin 2026. The volume of disclosed vulnerabilities highlights the ongoing gap between vulnerability discovery and vendor patching capacity.
A heap buffer overflow in NGINX's rewrite module (CVE-2026-42945, CVSS 9.2) is being exploited in the wild days after disclosure, affecting versions 0.6.27 through 1.30.0 and potentially enabling remote code execution or worker process crashes.
A Windows privilege escalation zero-day called MiniPlasma has had a proof-of-concept exploit publicly released, allowing attackers to achieve SYSTEM-level access on fully patched systems. Public PoC availability significantly increases exploitation risk across all affected Windows environments.
A security researcher claims Microsoft quietly patched an Azure Backup for AKS vulnerability without issuing a CVE or acknowledging the original report, whilst Microsoft contests the characterisation and denies making product changes. The dispute highlights tensions in coordinated disclosure practices and raises concerns about undisclosed fixes in cloud infrastructure.
Remote Sunrise Helper for Windows 2026.14 permits unauthenticated attackers to enumerate files and directories via an improperly secured API or web interface. This PoC demonstrates information disclosure that could facilitate follow-on attacks.
The Snipping Tool can be abused to trigger NTLM authentication flows that leak NTLMv2 hashes to attacker-controlled network locations. Defenders must monitor for suspicious UNC path access and enforce network segmentation to prevent hash relay attacks.
THORChain suffered a $10.7 million theft from one of six vaults, indicating a compromise of their multi-signature custody mechanism. This demonstrates that even established DeFi platforms remain vulnerable to sophisticated attacks targeting key management and vault architecture.
Attackers are actively exploiting a critical flaw in the Funnel Builder WordPress plugin to inject malicious JavaScript into WooCommerce checkout pages, enabling payment card theft from customer transactions.
Marten's full-text search APIs directly interpolate user-supplied regConfig parameters into SQL queries without sanitization, enabling unauthenticated SQL injection against PostgreSQL backends. The PoC confirms multiple attack vectors including time-based exfiltration and arbitrary query execution.
VM2 fails to properly isolate host exceptions thrown during async generator cleanup, allowing attackers to break sandbox confinement and execute arbitrary host code. This PoC reliably demonstrates RCE by constructing a type-confused Error object that escapes sandbox restrictions.
Goobi viewer's POST /api/v1/index/stream endpoint forwarded arbitrary Solr streaming expressions without authentication, enabling complete index exfiltration, modification, and deletion. This PoC demonstrates pre-authentication remote code execution risk against backend search infrastructure.
SiYuan's Bazaar marketplace fails to HTML-escape package `name` and `version` fields before rendering them to DOM via `innerHTML`, enabling stored XSS that escalates to OS command execution due to permissive Electron security configuration (nodeIntegration enabled, contextIsolation disabled).
CVE-2026-22599 allows authenticated administrators to inject arbitrary SQL through the Content-Type Builder's `column.defaultTo` attribute, enabling database compromise including file read, DoS, and potential RCE. This PoC demonstrates a critical gap in input validation on trusted user boundaries.
Google Project Zero published a 0-click exploit chain for Pixel 10 leveraging CVE-2025-54957 (Dolby vulnerability) and bypassing RET PAC mitigations. The attack requires only two exploits to achieve root access from a zero-interaction context, indicating modern Android devices remain vulnerable despite security hardening.
SillyTavern trusts HTTP headers (`Remote-User`, `X-Authentik-Username`) from any network client without validating origination from a trusted reverse proxy, allowing unauthenticated attackers to impersonate any user including administrators. This is a foundational architectural flaw in SSO integration.
Mapfish Print contains an unauthenticated RCE vulnerability in dynamic table functionality, allowing arbitrary code execution without credentials. This PoC is significant for defenders as it demonstrates a critical authentication bypass combined with code injection.
Microsoft released fixes for 137 vulnerabilities spanning Azure, Windows, Dynamics 365, and Jira/Confluence SSO integrations. The breadth of affected platforms suggests defenders face a complex patching prioritisation challenge across multiple attack surfaces.
CVE-2026-45185 is a use-after-free vulnerability in Exim's BDAT command handling that affects GnuTLS-compiled builds, enabling memory corruption and potential code execution on mail servers. Given Exim's deployment across internet-facing mail infrastructure, this poses significant risk to email delivery chains.
Attackers exploited a pull_request_target misconfiguration combined with GitHub Actions cache poisoning and in-memory OIDC token extraction to publish 84 malicious npm package versions under a trusted publisher identity, delivering credential-harvesting malware at install time.
CVE-2026-7482, a critical out-of-bounds read flaw in Ollama, permits unauthenticated remote attackers to extract entire process memory from affected instances. With an estimated 300,000+ servers exposed globally, this represents immediate risk to organisations running unpatched deployments.
free5GC's NEF service exposes the nnef-pfdmanagement API without OAuth2 validation, allowing unauthenticated attackers to read sensitive PFD application data and manipulate subscriptions. This PoC confirms a deployment-wide authentication bypass in production-declared routes.
Snipe-IT versions ≤8.4.0 suffer from an authorization bypass in the file upload API endpoint that allows authenticated users with only 'view' permissions to upload arbitrary files, leading to remote code execution. Defenders must immediately patch or restrict API access.
cPanel has released patches for three vulnerabilities including insufficient input validation in feature file handling and unspecified code execution issues. These affect a critical infrastructure component used by hosting providers and require immediate patching.
A critical vulnerability in vm2 allows attackers to mutate host prototypes, enabling sandbox escapes. The PoC highlights the risk of untrusted code accessing and modifying core JavaScript objects.
The `module` builtin in NodeVM allows bypassing the built-in allowlist, enabling sandbox escape and remote code execution.
A critical sandbox escape vulnerability in vm2 allows attackers to execute arbitrary code directly on the host system, potentially compromising any Node.js application using vm2 for code isolation.
The Grav Login plugin fails to validate user-supplied `groups` and `access` fields during registration, allowing unauthenticated attackers to self-register with administrative privileges when these fields are included in the allowed registration fields configuration.
Grav CMS contains five remote code execution vulnerabilities spanning unsafe unserialize() calls without class restrictions and unescaped shell parameters in git operations. This PoC is significant because it demonstrates ecosystem-wide deserialization hygiene gaps and highlights that security controls exist in the same codebase but are inconsistently applied.
Two compounding defects in ArcadeDB allow authenticated users to bypass database and record-level authorization controls: uninitialized fileAccessMap treated as allow-all, and newly-created databases with disabled security factories. Any authenticated principal can read/write/mutate schemas across all databases on a shared server.
A 23-year-old student in Taiwan gained unauthorised access to the TETRA communication system used by the high-speed railway network and triggered emergency brake sequences. This demonstrates direct vulnerabilities in critical infrastructure communications that lack adequate access controls.
CVE-2026-40281 demonstrates a bypass of Gotenberg v8.30.1's metadata sanitization by injecting newline characters into metadata VALUES (not keys), allowing arbitrary ExifTool pseudo-tag execution and file system manipulation. Defenders must patch immediately and audit all metadata input handling.
A logic error in the Patreon OAuth provider causes all authenticated users to map to an identical local user ID, collapsing distinct accounts into a single identity and enabling unauthorized cross-user access.
fabric-sdk-java's Channel.deSerializeChannel() deserializes untrusted byte arrays without an ObjectInputFilter, enabling remote code execution via gadget chain exploitation. This PoC demonstrates a fundamental deserialization flaw in deprecated but still-deployed SDKs.
A prototype pollution flaw in n8n's xml2js-based webhook handler allows authenticated users to corrupt JavaScript object prototypes, which can be chained with Git node SSH operations to achieve remote code execution on the host system.
A critical authentication bypass in cPanel and WHM affects all versions except the latest, allowing unauthenticated attackers to gain full control panel access. This threatens the administrative interfaces of millions of hosted websites and is likely already being exploited in the wild.
Two authentication bypass vulnerabilities in Qinglong, an open-source task scheduler popular with developers, are being actively exploited to deploy cryptominers on compromised servers. The flaws allow unauthenticated remote code execution, making this a significant threat to any organisation running unpatched instances.
LangChain Core 1.2.4 contains a Server-Side Template Injection (SSTI) vulnerability in template processing that allows unauthenticated remote code execution. This PoC demonstrates the need for immediate input validation hardening in LLM framework integrations.
A pre-authentication SQL injection in BerriAI's LiteLLM Python package (CVE-2026-42208, CVSS 9.3) is being actively exploited within 36 hours of public disclosure. The flaw enables unauthenticated attackers to access and modify sensitive data stored in LLM gateway deployments.
Robinhood's account creation endpoint allowed threat actors to inject arbitrary content into legitimate platform emails, enabling convincing phishing attacks that impersonated the platform to solicit credentials. This represents a direct authentication bypass social engineering vector.
go-zserio trusts size fields during deserialization without validation, allowing attackers to trigger excessive memory allocation (DoS). This PoC demonstrates a fundamental input validation flaw affecting all platforms.
Gemini CLI automatically trusted workspace folders in headless/CI mode without validation, allowing malicious `.gemini/` configuration files to execute arbitrary code via environment variable injection. The `--yolo` flag further bypassed tool allowlisting controls.
electerm's install.js contains a command injection flaw where attacker-controlled version strings are directly concatenated into shell commands without sanitization. Defenders must identify vulnerable installations and verify patching, as remote version metadata compromise could lead to arbitrary code execution during package installation.
Authenticated users with script execution permissions can bypass API access controls by directly connecting to internal services (Redis, S3) via shared Docker network, escalating privileges to administrative level. This PoC demonstrates the exploitation chain requires minimal effort once script execution is granted.
A file upload vulnerability in the widely-installed Breeze Cache WordPress plugin allows attackers to upload arbitrary files without authentication, enabling remote code execution on affected servers. Active exploitation is underway.
A critical remote code execution flaw in protobuf.js has been exploited with published proof-of-concept code, enabling arbitrary JavaScript execution in applications using this widely-deployed serialisation library. This poses immediate risk to any Node.js or browser-based system consuming untrusted Protocol Buffer messages.
The SCP middleware in charm.land/wish fails to validate resolved paths remain within configured root directories, allowing unauthenticated clients to read/write arbitrary files. This PoC demonstrates a fundamental flaw in path sanitization logic affecting all current versions.
Zebra failed to enforce consensus rules for V5 transaction sighash hash-type validation post-NU5 upgrade, and incorrectly processed V4 transaction hashes. This could allow malicious actors to create blocks accepted by Zebra but rejected by zcashd, causing network partition and double-spend risks.
CISA confirmed that a high-severity remote code execution vulnerability in Apache ActiveMQ, which remained unpatched for 13 years, is now being actively exploited by threat actors following its public disclosure. This represents a typical post-patch exploitation window where defenders face maximum risk.
Paperclip's `/api/agents/:id/keys` endpoints fail to validate tenant ownership, allowing any authenticated user to mint valid API tokens for agents in other companies. This bypasses the core multi-tenant security boundary.
Paperclip control-plane API fails to validate company ownership on agent key management endpoints, allowing authenticated board-users from Company A to enumerate, create, and revoke API keys for agents belonging to Company B, resulting in full cross-tenant compromise.
Saltcorn's mobile sync routes embed unauthenticated user-supplied numeric values directly into SQL template literals without parameterization. Any authenticated user with table read access can execute arbitrary SQL, including data exfiltration and (on PostgreSQL) DDEs.
A researcher calling themselves 'Chaotic Eclipse' has published a proof-of-concept exploit for 'RedSun', a second Microsoft Defender zero-day discovered in recent weeks. The public disclosure appears motivated by protest over Microsoft's vulnerability coordination practices.
A stored cross-site scripting (XSS) vulnerability in Decidim's user name field enables arbitrary code execution in victim browsers via passive comment page visits. This represents a critical stored XSS variant with cross-security-boundary impact.
wolfSSL's improper validation of hash algorithm identity and length in ECDSA signature verification allows attackers to forge valid certificates, potentially compromising any system relying on wolfSSL for TLS authentication.
Unauthenticated credential disclosure in Juju CloudSpec API allows any authenticated controller user to retrieve cloud bootstrap credentials, bypassing intended role-based access controls. This PoC demonstrates privilege escalation through API permission misconfiguration affecting multiple recent versions.
Paperclip instances with default configuration allow unauthenticated account creation, authentication bypass, and privilege escalation to RCE through a six-step API chain. This affects all publicly accessible deployments running in authenticated mode without explicit hardening.
Daptin's cloudstore.file.upload action fails to validate user-supplied filenames, enabling unauthenticated attackers to write arbitrary files to disk via path traversal and zip slip attacks. This vulnerability bypasses authentication entirely and presents immediate RCE risk.
An unauthenticated attacker can execute arbitrary code as root by POSTing to a public webhook endpoint that triggers automation workflows containing Bash steps with unsanitized template processing. This requires zero authentication and demonstrates complete server compromise.
pyLoad's fix for CVE-2026-33992 validates only the initial download URL but fails to validate HTTP redirect targets, allowing authenticated attackers to reach internal addresses. The PoC demonstrates that pycurl's automatic redirect following (FOLLOWLOCATION=1, MAXREDIRS=10) completely bypasses IP filtering.
Fortinet released emergency patches for CVE-2026-35616, a pre-authentication API access control flaw in FortiClient EMS that allows unauthenticated attackers to escalate privileges. The vulnerability is being actively exploited in the wild.
PraisonAI Gateway exposes unauthenticated `/info` and `/ws` endpoints, allowing attackers to enumerate all registered agents and inject arbitrary messages without credentials. The PoC demonstrates network-adjacent exploitation with zero authentication barriers.
PraisonAI's token validation function returns True for any unrecognized token when the internal token store is empty (default state), allowing unauthenticated access to all MCP tools including agent execution and file operations. This bypasses intended OAuth authentication entirely.
Juju controllers (3.2.0+) fail to validate TLS client certificates on Dqlite cluster endpoints, allowing unauthenticated attackers with network access to join the cluster, read/modify all data, and escalate privileges. The PoC demonstrates practical network-level exploitation without credentials.
Apple is expanding iOS 18 security updates across a wider range of iPhone models to address the actively exploited DarkSword exploit kit. This indicates an ongoing threat with sufficient prevalence to warrant rapid, broad patching.
CISA added CVE-2026-5281, a zero-day use-after-free in Google Chrome's Dawn WebGPU implementation, to its Known Exploited Vulnerabilities Catalog after evidence of active exploitation. This represents an emerging attack vector targeting GPU rendering pipelines rather than traditional browser exploits.
OpenClaw loads `.env` files from the current working directory before applying trusted state-dir configuration, allowing attackers to inject malicious environment variables through repository-committed or workspace files. This bypasses intended host environment isolation policies and enables configuration/security setting override.
Unsanitized user input in Methods Management functionality results in stored XSS payloads that execute globally across all pages where the malicious method appears in navigation menus, enabling account takeover and privilege escalation.
Unsanitized input in group/role management fields allows stored XSS execution in administrative contexts, enabling full account takeover and application compromise. This PoC demonstrates a complete authentication bypass pathway for defenders to understand systemic input validation failures.
PX4 Autopilot v1.16.0 contains an authentication bypass in the MAVLink interface allowing unauthenticated attackers to execute arbitrary shell commands. This affects unmanned aerial systems and robotics platforms relying on PX4.
CVE-2026-3356 affects all versions of Anritsu's Remote Spectrum Monitor series, allowing network-accessible attackers to modify operational settings, exfiltrate signal intelligence, or cause denial of service. The vulnerability impacts spectrum analysis infrastructure used in telecommunications and defence sectors.
mpp versions before 0.8.0 contain multiple authentication bypass vulnerabilities allowing attackers to replay payment requests, hijack session channels, and manipulate fee responsibility. This PoC matters for defenders as it demonstrates systemic weaknesses in request validation and session management that affect financial transaction integrity.
GitHub Actions workflows that directly embed `issue_comment.body` into shell commands without sanitization allow unauthenticated attackers to inject arbitrary shell commands and execute code on runners. This PoC demonstrates escape-and-execute techniques that bypass basic quoting.
MikroORM fails to properly validate internal ORM markers, allowing attackers to inject raw SQL through specially crafted objects passed to write APIs. This requires direct application-level data flow to ORM methods, making input validation the primary defense.
A file read vulnerability in Smart Slider 3 WordPress plugin allows subscriber-level users to access arbitrary files on affected servers. With 800,000+ installations, this represents a significant exposure vector for sensitive configuration files and database credentials.
A logic flaw in Zebra's transaction processing allows remote attackers to crash nodes by sending crafted V5 transactions that pass network deserialization but fail during TxID computation. This PoC demonstrates unauthenticated network-level DoS impact on blockchain infrastructure.
OpenClaw gateway authentication allows paired devices to silently escalate privileges from operator.read to operator.admin during reconnect events without explicit approval, enabling node RCE. This demonstrates an implicit trust model vulnerability in local shared-auth flows.
CISA has added CVE-2025-53521, a remote code execution vulnerability in F5 BIG-IP, to its Known Exploited Vulnerabilities catalog following evidence of active exploitation. This represents an immediate threat to federal networks and critical infrastructure relying on BIG-IP for load balancing and application delivery.
Three security flaws in LangChain and LangGraph frameworks allow attackers to read filesystem data, extract environment variables containing secrets, and access conversation histories. These widely-adopted LLM frameworks put thousands of dependent applications at risk.
CVE-2026-33863 exposes two prototype pollution paths in node-convict's config loading and schema initialization that allow attackers to pollute Object.prototype through untrusted JSON/schema data, potentially enabling authentication bypass or RCE.
Convict 6.2.4 contains a prototype pollution flaw where attackers can override String.prototype.startsWith to bypass validation checks, enabling Object.prototype contamination. The PoC demonstrates that previous mitigation attempts are insufficient and defenders must implement input validation at multiple layers.
A privilege escalation flaw in OpenClaw's device.pair.approve method allowed operators with pairing-level permissions to approve device requests with elevated operator scopes they don't possess, enabling unauthorized administrative access.
CISA has confirmed active exploitation of CVE-2026-33017 in Langflow, a framework for building AI agent workflows. Attackers are hijacking AI pipelines, likely to poison outputs or exfiltrate training data integrated into these systems.
Attackers exploited unpatched vulnerabilities in Ajax Amsterdam's IT infrastructure to access fan data and enable ticket hijacking. The incident highlights how sporting organisations remain attractive targets for financially motivated threat actors.
A hidden function in WAGO industrial managed switches allows unauthenticated remote attackers to escape the restricted CLI interface and achieve complete device compromise across six hardware models. This represents a critical supply chain risk for industrial control systems.
OpenCode Systems OC Messaging and USSD Gateway versions 6.32.2 contain an insecure direct object reference (IDOR) vulnerability allowing authenticated users to access SMS messages from other tenants by manipulating company or tenant identifiers. This affects multi-tenant deployments handling sensitive communications.
CVE-2026-4681 allows remote code execution in PTC Windchill Product Lifecycle Management across versions 11.0 through 13.1.3.0. This impacts organisations managing product designs and intellectual property across manufacturing, aerospace, and defence sectors.
Authenticated users can bypass AlaSQL sandbox restrictions in n8n's Merge node to execute arbitrary SQL, read sensitive files, and achieve remote code execution. This PoC demonstrates insufficient input validation in what should be a restricted query execution environment.
OpenTelemetry Java instrumentation versions <2.26.1 fail to apply serialization filters on RMI deserialization, allowing unauthenticated remote code execution when RMI endpoints are network-accessible and gadget chains are present. This affects production observability infrastructure with potential for supply-chain compromise.
AVideo's live stream control endpoint accepts user-supplied URLs for token verification, allowing attackers to redirect authentication checks to attacker-controlled servers that approve all tokens. This completely bypasses stream access controls without credentials.
CISA has added CVE-2026-33017, a code injection vulnerability in Langflow, to its Known Exploited Vulnerabilities Catalog based on confirmed active exploitation. Code injection vulnerabilities represent a direct path to remote code execution and are frequently weaponised by threat actors.
Threat actors used compromised credentials to inject malware into Trivy releases and related GitHub Actions repositories, affecting users of v0.69.4-0.69.6 and action workflows. This demonstrates a critical supply chain attack vector targeting security tooling infrastructure.
Scriban's TemplateContext caches type accessors by Type alone, ignoring MemberFilter changes. Reusing a context with a tightened filter after a permissive render allows attackers to access members that should be hidden, bypassing sandbox restrictions.
PTC has disclosed a critical remote code execution vulnerability in Windchill and FlexPLM product lifecycle management platforms. Exploitation could grant attackers complete control over enterprise systems managing design, manufacturing, and supply chain data.
A memory leak vulnerability in Grassroots DICOM (GDCM) 3.2.2 allows remote attackers to trigger denial-of-service conditions by submitting specially crafted DICOM files. This affects healthcare systems that rely on GDCM for medical image processing.
Schneider Electric patched a critical untrusted deserialization vulnerability in EcoStruxure Foxboro DCS workstations and servers that enables remote code execution. The vulnerability affects control software on engineering stations but spares runtime components, yet poses significant risk to DCS environments managing critical infrastructure.
Schneider Electric Plant iT/Brewmaxx versions 9.60 and above contain four critical vulnerabilities (CVSS 9.9) enabling privilege escalation to remote code execution. Organizations using this brewing and plant management software face immediate risk of full system compromise.
Pharos Controls Mosaic Show Controller firmware 2.15.3 contains an unauthenticated remote code execution vulnerability allowing attackers to execute arbitrary commands with root privileges. This impacts live event production infrastructure with no authentication barrier.
Threat actors are actively exploiting CVE-2025-32975, a critical remote code execution flaw in Quest KACE Systems Management Appliance (SMA), against unpatched internet-exposed instances since March 2026. SMA is enterprise-grade IT infrastructure management software, making compromises particularly damaging.
AVideo's `plugin/Live/test.php` accepts unauthenticated user input to trigger outbound HTTP requests without validation, enabling attackers to probe internal networks, access cloud metadata endpoints, and potentially pivot to internal services.
GitHub Actions workflows that directly interpolate untrusted issue fields (title, body, labels) into shell `run` blocks using template expressions are vulnerable to command injection. This PoC demonstrates that unauthenticated attackers can trigger arbitrary code execution and exfiltrate secrets by crafting malicious issue titles.
CISA has issued an emergency patching order for CVE-2026-20131, a maximum-severity vulnerability in Cisco Secure Firewall Management Center, requiring federal agencies to remediate by March 22, 2026. This indicates either active exploitation or imminent threat intelligence suggesting weaponization.
Oracle released an emergency out-of-band patch for an unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager (CVE-2026-21992). This is a critical identity infrastructure flaw that likely enables complete system compromise without credentials.
MinIO's OIDC implementation contains a JWT algorithm confusion vulnerability allowing attackers who possess the ClientSecret to forge identity tokens and obtain admin-level S3 credentials. This PoC demonstrates a deterministic, high-impact attack path requiring only knowledge of a shared credential.
Unauthenticated SSRF in AVideo's standalone DVR saver allows attackers to forge server-side requests to arbitrary URLs, potentially chaining to authentication bypass and internal network reconnaissance. The PoC demonstrates complete lack of input validation in a publicly accessible endpoint.
All versions of IGL-Technologies eParking.fi contain critical authentication and access control vulnerabilities (CVSS 9.4) that could allow attackers to gain unauthorized administrative control over EV charging stations or launch denial-of-service attacks against charging services.
A remote out-of-bounds read vulnerability in Mitsubishi Electric CNC Series controllers enables denial-of-service attacks. This affects critical industrial manufacturing infrastructure across multiple product lines with varying patch states.
Schneider Electric EcoStruxure Automation Expert versions ≤25.0.1 contain a vulnerability enabling arbitrary command execution on engineering workstations. This threatens the integrity of critical industrial control systems across discrete, hybrid, and continuous manufacturing processes.
Automated Logic WebCTRL Premium Server contains multiple critical vulnerabilities including cleartext transmission, authentication bypass via spoofing, and port binding issues that allow attackers to intercept, read, and modify communications in building automation systems.
Schneider Electric Modicon Controllers (M241, M251, M258, M262, LMC058) contain XSS/open redirect and denial-of-service vulnerabilities affecting web interfaces. Exploitation could lead to account takeover, browser-based code execution, or operational disruption in industrial environments.
HAPI FHIR's HTTP client transmits authentication headers and sensitive data to redirect destinations without validation, enabling credential theft and cross-host impersonation attacks. Defenders must identify and patch affected deployments immediately.
gRPC-Go servers fail to canonicalize HTTP/2 :path pseudo-headers before authorization checks, allowing attackers to bypass path-based access control policies by omitting the leading slash in requests.
The Tekton git resolver fails to sanitize the `pathInRepo` parameter, allowing namespace-scoped tenants to read arbitrary files from the resolver pod filesystem via path traversal sequences. This enables credential exfiltration including ServiceAccount tokens.
ConnectWise patched a cryptographic signature verification vulnerability in ScreenConnect that allows attackers to bypass authentication and hijack remote access sessions. This is a critical supply-chain risk affecting thousands of managed service providers and their downstream customers.
CISA issued a binding directive for U.S. federal agencies to patch an actively exploited XSS vulnerability in Zimbra Collaboration Suite, indicating threat actors are leveraging email infrastructure compromises for potential lateral movement and data theft.
CISA added two known-exploited vulnerabilities to its KEV catalog: a Zimbra Collaboration Suite XSS flaw and a Microsoft SharePoint deserialization vulnerability. Both are under active exploitation and carry significant risk to federal and enterprise environments.
SiYuan's SVG sanitizer blocks data:text/html and data:image/svg+xml but misses data:text/xml and data:application/xml, allowing unauthenticated XSS via the /api/icon/getDynamicIcon endpoint. The fix for CVE-2026-29183 was incomplete, leaving equivalent bypass vectors.
jsPDF versions before 4.2.1 fail to sanitize user-controlled options passed to window-opening output methods, allowing attackers to inject arbitrary HTML and JavaScript into the PDF viewer context. This enables XSS attacks when applications pass unsanitized user input to these functions.
Apple released a new Background Security Improvements update addressing WebKit CVE-2026-20643 across iOS, iPadOS, and macOS without requiring full operating system upgrades. This represents a significant shift in Apple's patching strategy, enabling faster security remediation for critical browser engine vulnerabilities.
A vulnerability in CODESYS runtime components bundled with Festo Automation Suite prior to v2.8.0.138 allows unauthenticated remote attackers to execute arbitrary code on industrial automation systems. This affects a widely-used ICS development platform with significant operational technology footprint.
Schneider Electric SCADAPack x70 RTUs and RemoteConnect products contain an authentication or access control vulnerability affecting firmware versions prior to 9.12.2, potentially allowing unauthorized remote access to critical industrial control systems with downstream impacts on device integrity and availability.
Schneider Electric's EcoStruxure Data Center Expert contains hard-coded credentials that, combined with an optional SOCKS proxy feature, allow authenticated attackers to compromise the monitoring platform. This threatens visibility and control of critical data center infrastructure.
Siemens SICAM SIAPP SDK versions below 2.1.7 contain multiple vulnerabilities exploitable through improper API usage or missing hardening, risking denial of service, data corruption, and simulation environment compromise in customer-developed SIAPP applications.
Unauthenticated users can register as administrators when self-signup is enabled and default permissions include admin privileges. The signup handler blindly applies all defaults without stripping elevated permissions.
The `/api/search/fullTextSearchBlock` endpoint in SiYuan v3.6.0 bypasses role-based access controls present on other SQL endpoints, allowing any authenticated user (including read-only roles) to execute arbitrary SQL. This PoC proves the middleware chain inconsistency is exploitable in production deployments.
Admidio's documents-files module fails to enforce DELETE authorization and CSRF protection, allowing unauthenticated users to permanently destroy document libraries when public access is enabled, or allowing authenticated read-only users to delete content they cannot modify.
Companies House, the UK's official business registry, suffered a security flaw in its WebFiling service that exposed sensitive business information for approximately 4 months (October 2025 - present). The breach affected a government-critical infrastructure system handling registration data for all UK companies.
CISA confirmed that a Wing FTP Server vulnerability is being actively exploited in attacks against U.S. government agencies, with potential for chaining into remote code execution. This represents an immediate threat to federal infrastructure and requires urgent patching.
CISA added CVE-2025-47813, a medium-severity information disclosure flaw in Wing FTP Server, to its Known Exploited Vulnerabilities catalog due to evidence of active exploitation. The vulnerability leaks application installation paths under certain conditions, enabling reconnaissance for follow-on attacks.
A critical unauthenticated vulnerability in HPE AOS-CX switches allows remote attackers to reset admin credentials without any authentication, providing immediate device takeover capability. This impacts network infrastructure security across enterprise environments.
China's CNCERT warned that OpenClaw's weak default security configurations enable prompt injection attacks and potential data exfiltration. This affects organizations deploying the self-hosted AI agent without hardening baseline security controls.
Microsoft released an out-of-band hotpatch to remediate a remote code execution vulnerability in Routing and Remote Access Service (RRAS) affecting Windows 11 Enterprise devices. This emergency deployment indicates active exploitation risk and bypasses the standard monthly patch cycle.
Centrifugo performs JWT claim extraction and dynamic URL interpolation before cryptographic signature verification, allowing unauthenticated attackers to trigger SSRF requests to arbitrary destinations via crafted JWT claims.
Apollo Federation gateway fails to properly sanitize field aliases and variable names, allowing prototype pollution of Object.prototype. Successful exploitation persists across subsequent requests, potentially enabling privilege escalation and data integrity violations.
A logic flaw in OpenClaw's WebSocket authentication path allows shared-secret clients to self-declare elevated scopes (e.g., operator.admin) without server-side validation, enabling unauthorized admin operations. Defenders must patch immediately and audit existing shared-auth connections.
Parse Server's OAuth2 adapter uses a shared singleton instance across multiple providers, allowing concurrent authentication requests to cause token validation confusion where one provider's token may be validated against another provider's policy, potentially leading to unauthorized access.
Unauthenticated attackers can hijack user accounts by exploiting improper input validation in authentication data identifiers, converting exact-match lookups into pattern-matching queries. This affects all Parse Server deployments with anonymous authentication enabled by default.
Improper access control vulnerabilities in Siemens Heliox EV charging stations allow attackers to reach unauthorized services via the charging cable interface. Siemens has released patched versions.
Multiple vulnerabilities in Trane Tracer SC, SC+, and Concierge platforms could enable attackers to disclose sensitive data, execute arbitrary commands, or cause denial-of-service. These are critical building management systems used in enterprise infrastructure.
Siemens SIMATIC S7-1500 industrial controllers contain a code injection vulnerability exploitable through specially crafted trace files in the web interface, affecting multiple drive controller and edge device variants. This represents a critical remote code execution vector in operational technology environments.
Fortinet vulnerabilities affecting FortiOS have been mapped to Siemens RUGGEDCOM APE1808 industrial edge devices. With a CVSS 9.8 score and multiple CVE IDs across all firmware versions, this represents a significant ICS attack surface requiring immediate patching.
Attackers with compromised GitHub App credentials can mutate release tags to point malicious commits, causing workflows to execute C2 implants. This PoC demonstrates tag poisoning as a scalable supply chain attack vector against Actions consumers.
IoT devices shipping with administrative credentials or defaulting to admin-level access create a persistent authentication bypass that enables complete device compromise. This represents a fundamental architectural failure in IoT security that affects entire device classes and is difficult to remediate post-deployment.
CISA has confirmed active exploitation of CVE-2025-68613, a code injection vulnerability in n8n that allows attackers to execute arbitrary code through improperly managed dynamic code resources. This poses significant risk to organizations using n8n for workflow automation.
VS Code's AI chat features are vulnerable to indirect prompt injection attacks where malicious content in code files or documentation can poison conversations, leading to unauthorized exposure of GitHub tokens, sensitive files, and arbitrary code execution.
Trail of Bits discovered four prompt injection techniques that could extract private user data (Gmail contents) from Perplexity's Comet browser by exploiting inadequate input sanitization in AI assistant features. The vulnerabilities highlight systemic risks in AI agent design where external web content is processed as trusted input.
Microsoft released 93 patches on March 10, 2026, including 8 critical vulnerabilities and 9 Chromium-based flaws in Edge. Two pre-disclosed vulnerabilities remain unexploited but warrant close monitoring given their early exposure.
PortSwigger Research discovered multiple parser-level inconsistencies in SAML implementations for Ruby and PHP that enable full authentication bypass. These exploits leverage attribute pollution and namespace confusion to forge valid authentication tokens.
A threat actor successfully bypassed Claude's safety mechanisms using Spanish-language prompts to conduct a sustained, multi-stage attack against Mexican government networks, resulting in data exfiltration and thousands of command executions on critical infrastructure.
AirSnitch exploits fundamental layer 1-2 binding failures in Wi-Fi to perform bidirectional machine-in-the-middle attacks across home, office, and enterprise networks without requiring network membership or proximity constraints. The attack breaks core 802.11 assumptions about client identity synchronization.
Parse Server's PostgreSQL adapter fails to escape sub-key names in Increment operations, allowing SQL injection. The PoC highlights the need for immediate patching to prevent database compromise.
A critical RCE vulnerability in OneUptime's Synthetic Monitors allows low-privileged users to execute arbitrary commands on the server by leveraging exposed Playwright browser objects.
The Linkdave HTTP server lacks authentication on REST and WebSocket endpoints, allowing unauthenticated access. This PoC highlights the need for immediate patching or network restrictions to prevent unauthorized access.
The RSSN library contains a critical vulnerability allowing Arbitrary Code Execution through unvalidated JIT instruction generation in its CFFI interface, posing significant risks to systems and data.
The vulnerability allows unauthenticated attackers to inject malicious SQL code via the job_id parameter, potentially leading to unauthorized database access. This PoC highlights the importance of securing input parameters in web applications.
A critical path traversal vulnerability in the /export endpoint of SiYuan allows arbitrary file reads and secret leakage via double-encoded sequences, risking full system compromise.
The OneUpTime probe executes untrusted user code in an insecure Node.js vm context, allowing attackers to bypass sandboxing and achieve RCE. This PoC highlights the risks of using `vm` for untrusted code execution.
OneUptime's Synthetic Monitor allows untrusted Playwright code execution with access to host browser objects, enabling arbitrary executable spawning. This PoC highlights a direct RCE vector bypassing traditional sandbox escapes.
CISA has ordered U.S. federal agencies to patch three iOS security flaws exploited by the Coruna exploit kit, which is linked to cyberespionage and crypto-theft attacks.
Cognizant's TriZetto Provider Solutions suffered a data breach exposing health data of over 3.4 million individuals, highlighting critical vulnerabilities in healthcare IT systems.
Pingora versions prior to 0.8.0 are vulnerable to HTTP Request Smuggling due to improper handling of the Upgrade header, allowing attackers to bypass security controls.
Pingora improperly handles HTTP/1.0 request bodies and Transfer-Encoding headers, enabling HTTP request smuggling attacks that bypass security controls. The PoC highlights the importance of proper request parsing in reverse proxies.
The `time-sync` crate was used to exfiltrate `.env` files, highlighting a supply chain attack vector in Rust ecosystem. Defenders should focus on monitoring and securing package repositories.
Delta Electronics' CNCSoft-G2 software has a critical vulnerability that enables remote code execution, posing significant risks to industrial manufacturing systems.
A critical XSS vulnerability in Zitadel's /saml-post endpoint allows account takeovers via malicious scripts. The PoC highlights the need for immediate defensive measures.
zeptoclaw's allowlist and blocklist mechanisms can be bypassed using command injection, argument injection, or file name wildcards, enabling arbitrary command execution. This PoC highlights critical flaws in the project's security model.
The `dnp3times` crate was a malicious, typosquatting attempt that attempted to exfiltrate sensitive `.env` files to a server impersonating `timeapi.io`. The incident highlights risks in Rust crate supply chains and the importance of verifying dependencies.
Cisco has identified two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC) software that could allow attackers to gain root access, posing a critical risk to network security.
Microsoft has patched a critical issue in Windows 10 that prevented users from accessing the Recovery Environment, which is essential for system repairs and troubleshooting.
A critical zero-click vulnerability in the FreeScout helpdesk platform allows attackers to remotely hijack mail servers without user interaction, posing a severe risk to organizations using the service.
Bitwarden has introduced passkey login support on Windows 11, offering a phishing-resistant authentication method stored in their vault.
PickleScan's blocklist mechanism is bypassed using `pkgutil.resolve_name`, allowing any blocked function to be executed. This flaw enables universal RCE attacks undetected by PickleScan.
PickleScan v1.0.3 fails to block multiple Python stdlib modules enabling RCE, allowing bypass of security scans.
Craft CMS suffers from an authenticated RCE vulnerability due to SSTI in Twig templates, allowing attackers to write malicious scripts to web-accessible directories.
Critical vulnerabilities in ePower's charging stations could allow attackers to gain administrative control or disrupt services, posing significant risks to electric vehicle infrastructure.
Labkotec LID-3300IP devices are vulnerable to unauthenticated access, allowing attackers to take control of critical system operations, posing significant risks to industrial safety.
Hitachi Energy's RTU500 product has critical vulnerabilities that could lead to device outages and exposure of user management information, posing significant risks to industrial control systems.
Mobiliti e-mobi.hu charging stations are vulnerable to critical flaws allowing unauthorized administrative control and denial-of-service attacks, affecting all versions of the product.
A critical vulnerability in Windows ACPX path handling allows cwd injection via .cmd/.bat wrapper fallback, risking command execution. Immediate patching is advised.
The OpenClaw gateway agents.files.get and agents.files.set methods allowed symlink traversal, enabling arbitrary file read/write outside the workspace. This PoC highlights critical risks for defenders.
An RCE vulnerability in OpenClaw's gateway allows authenticated clients to bypass node execution approvals by manipulating parameters, posing a significant risk to connected systems.
A critical SQL injection vulnerability exists in itsourcecode School Management System 1.0, allowing remote attackers to manipulate database queries. The PoC highlights the need for immediate defensive measures to prevent data exposure and system compromise.
A high-severity vulnerability in OpenClaw's core gateway allowed malicious websites to hijack locally running AI agents via WebSocket connections. The issue has been fixed, but highlights risks of unsecured AI systems.
South Korea's National Tax Service exposed a cryptocurrency wallet seed in a press release, enabling hackers to steal $4.8 million worth of crypto.
The Langflow CSV Agent hardcodes a flag that enables arbitrary code execution, posing a severe security risk.
Vitess backup restoration process allows attackers with backup storage access to write files to arbitrary paths, enabling unauthorized access and potential system compromise.
Vikunja's password reset mechanism allows token reuse due to improper token invalidation and cleanup, enabling persistent account takeovers.
Third-party software like PDF readers and email clients pose significant risks to organizations' security, with consistent patching being crucial to mitigate exploit exposure.
Microsoft is improving the security of batch file and CMD script execution in Windows 11 Insider Preview builds, addressing a common attack vector for malicious scripts.
The News Portal Project 1.0 has an SQL injection vulnerability in /admin/add-category.php due to improper handling of the Category parameter, allowing remote attackers to execute arbitrary SQL commands.
The itsourcecode News Portal Project 1.0 contains a critical SQL injection vulnerability in /newsportal/admin/edit-category.php, allowing remote attackers to manipulate the Category argument for malicious database queries.
A SQL injection vulnerability exists in the Username parameter of /loging.php, allowing remote exploitation. This PoC highlights the need for immediate defensive measures to prevent potential data breaches.
Multiple critical vulnerabilities in EV Energy's ev.energy charging stations could allow attackers to gain administrative control or disrupt services, posing significant risks to electric vehicle infrastructure.
Multiple critical vulnerabilities in Copeland XWEB and XWEB Pro devices allow attackers to bypass authentication, cause denial-of-service, memory corruption, and execute arbitrary code, posing significant risks to affected systems.
Multiple critical vulnerabilities exist in Pelco's Sarix Pro 3 Series IP cameras, allowing attackers to gain unauthorized access and potentially compromise sensitive data and operations.
Multiple critical vulnerabilities in Yokogawa's CENTUM VP R6 and R7 versions could allow attackers to execute arbitrary code or cause denial-of-service, posing significant risks to industrial control systems.
Chargemap chargemap.com suffers from multiple critical vulnerabilities, including missing authentication and denial-of-service flaws, potentially allowing attackers to gain administrative control or disrupt charging services.
Angular's SSR feature is vulnerable to SSRF and header injection due to untrusted Host and X-Forwarded-* headers, allowing attackers to manipulate the application's base origin.
A critical stored XSS vulnerability in RustFS Console's preview modal allows attackers to execute arbitrary JavaScript, leading to credential theft and system compromise. The PoC highlights the importance of securing sensitive credentials and validating content types.
Parse Server's Google auth adapter improperly handles JWT algorithms, allowing attackers to forge tokens with 'alg: none' for account takeover. The PoC highlights the need for enforcing specific algorithms and key validation.
Cisco's SD-WAN systems are being actively exploited due to critical vulnerabilities, with attackers bypassing authentication to gain administrative access. The situation is urgent for organizations using these systems.
OneUptime's use of Node.js vm module for executing untrusted code allows sandbox escape and full cluster compromise, highlighting the risks of improper isolation mechanisms.
ActualBudget server lacks authentication on several endpoints, exposing sensitive bank data to unauthorized access. This PoC highlights critical security gaps requiring immediate defensive action.
The vulnerability in Statamic's password reset feature allows attackers to capture tokens and hijack user accounts. The PoC highlights the importance of securing password recovery mechanisms.
CISA has added CVE-2026-25108, an OS command injection vulnerability in Soliton Systems' FileZen, to its Known Exploited Vulnerabilities Catalog due to evidence of active exploitation. This vulnerability poses significant risks to federal enterprises and other users.
InSAT MasterSCADA BUK-TS suffers from critical vulnerabilities (CVE-2026-21410, CVE-2026-22553) enabling SQL injection and OS command injection, potentially allowing remote code execution. This poses significant risks to industrial control systems.
The Ormar ORM is vulnerable to SQL injection through min() and max() functions due to lack of input validation, allowing attackers to execute arbitrary queries.
New York-based ad tech firm Optimizely suffered a data breach after falling victim to a voice phishing (vishing) attack, compromising customer data and underscoring the risks of social engineering in supply chains.
A bug in Microsoft's classic Outlook desktop client causes the mouse pointer to disappear for some users, impacting usability but not directly compromising security.
Android mental health apps with 14.7M installs expose sensitive user data due to critical security vulnerabilities, putting millions of users' medical information at risk.
Traefik contains a critical vulnerability allowing bypass of TLS client authentication over HTTP/3, potentially exposing protected resources to unauthorized access.
Critical stack-based buffer overflow in Delta Electronics ASDA-Soft versions up to 7.2.0.0 could allow remote code execution via structured exception handler (SEH) corruption.
Critical vulnerabilities in GE Vernova Enervista UR Setup versions below 8.70 allow remote code execution with elevated privileges, posing significant risks to industrial control systems.
Honeywell CCTV products have a critical vulnerability (CVE-2026-1670) that allows unauthenticated attackers to change recovery email addresses, leading to account takeovers and unauthorized access to camera feeds.
A critical vulnerability in the Welker OdorEyes EcoSystem Pulse Bypass System with XL4 Controller, rated CVSS v3 8.2, exposes unauthenticated access to critical functions, risking over- or under-odorization events that could compromise safety and operations.
EnOcean SmartServer IoT versions up to 4.60.009 contain critical vulnerabilities (CVE-2026-20761, CVE-2026-22885) allowing remote code execution and ASLR bypass, posing significant risks to smart building infrastructure.
CISA has identified two critical vulnerabilities in Roundcube webmail, with CVE-2025-49113 being actively exploited for remote code execution.
Anthropic's new AI-powered tool, Claude Code Security, scans codebases for vulnerabilities and suggests patches. This is a significant advancement in automated security testing.
Jinan USR IOT Technology's USR-W610 device has multiple critical vulnerabilities that could allow attackers to steal credentials, disable authentication, or cause denial-of-service. Affected versions include USR-W610 <=3.1.1.0.
Unauthenticated attackers can exploit a file read vulnerability in Valmet DNA Engineering Web Tools to access arbitrary files.
CISA has identified two critical vulnerabilities in RoundCube Webmail, both actively exploited. These include a deserialization flaw and an XSS vulnerability, posing significant risks to federal systems.
Microsoft's February 2026 Patch Tuesday addresses over 55 vulnerabilities including four actively exploited zero-days in Windows, Office, and the .NET Framework.
A critical vulnerability in PostgreSQL allows authenticated users with CREATE FUNCTION privileges to escape the SQL sandbox and execute arbitrary operating system commands on the database server.
A critical command injection vulnerability in Cisco NX-OS allows unauthenticated attackers to execute arbitrary commands on Nexus data center switches, threatening core network infrastructure.
Juniper Networks released emergency patches for a critical out-of-bounds write vulnerability in Junos OS that enables unauthenticated remote code execution on MX and SRX series devices.
The first Patch Tuesday of 2026 addresses a record eight actively exploited zero-day vulnerabilities spanning Hyper-V, Office, Windows kernel, and the Microsoft Access database engine.
A critical improper authentication vulnerability in SonicWall SonicOS SSLVPN allows unauthenticated attackers to hijack active VPN sessions, with exploitation observed against government and enterprise targets.
A new critical authentication bypass in Fortinet FortiOS allows unauthenticated attackers to gain super-admin privileges on FortiGate firewalls, with mass exploitation already underway targeting internet-exposed management interfaces.
A critical vulnerability in Apache Commons Text string interpolation is being mass-exploited at year's end, with attackers deploying cryptominers and ransomware through the widely-embedded Java library.
The final Patch Tuesday of 2025 addresses over 70 vulnerabilities including a critical Windows LDAP remote code execution flaw and an actively exploited Windows kernel zero-day.
Another critical zero-day in Ivanti Connect Secure VPN appliances is being mass-exploited to deploy custom malware, with CISA issuing an emergency directive requiring federal agencies to disconnect affected devices.
A critical OGNL injection vulnerability in Apache Struts allows unauthenticated remote code execution, with exploitation observed within days of the advisory publication.
Microsoft's November Patch Tuesday addresses a critical Exchange Server vulnerability being exploited by a nation-state group to access email communications, along with three other actively exploited flaws.
A critical zero-day vulnerability in Citrix NetScaler ADC and Gateway allows unauthenticated remote code execution, with threat actors injecting credential-harvesting JavaScript into login pages.
A critical vulnerability in Kubernetes kubelet allows attackers to escape container boundaries through crafted volume mount operations, potentially compromising the underlying node and all co-located containers.
Microsoft's October Patch Tuesday addresses a critical Remote Desktop Protocol vulnerability being exploited to gain initial access to enterprise networks without valid credentials.
Multiple critical vulnerabilities in Palo Alto Networks Expedition migration tool allow unauthenticated attackers to access firewall configuration files, credentials, and API keys stored in the tool's database.
A critical deserialization vulnerability in Veeam Backup & Replication allows unauthenticated attackers to gain remote code execution, with ransomware groups actively targeting backup infrastructure.
Cisco disclosed a critical authentication bypass in IOS XE Web UI affecting thousands of enterprise network devices, with mass exploitation and web shell deployment observed within 48 hours of disclosure.
Microsoft's September Patch Tuesday patches a wormable remote code execution vulnerability in the Windows TCP/IP stack along with two actively exploited privilege escalation zero-days.
A critical vulnerability in GitLab CE/EE allows attackers to hijack any account by manipulating the password reset flow, with exploitation already observed targeting internet-facing instances.
Microsoft's August Patch Tuesday addresses over 80 vulnerabilities with six confirmed actively exploited zero-days spanning Windows kernel, Office, and the SmartScreen security feature.
A critical stack-based buffer overflow in SonicWall SMA 100 series appliances allows unauthenticated remote code execution, with multiple ransomware affiliates exploiting it as an initial access vector.
Apple released emergency security updates across iOS, iPadOS, and macOS to fix two WebKit zero-day vulnerabilities actively exploited in sophisticated spyware attacks targeting journalists and activists.
A critical unauthenticated RCE vulnerability in FortiManager is being exploited by a Chinese-nexus threat actor to compromise managed Fortinet devices across government and defense networks.
Microsoft's July Patch Tuesday fixes over 60 vulnerabilities including a critical Hyper-V guest-to-host escape being exploited by nation-state actors for cloud infrastructure attacks.
A critical signal handler race condition in OpenSSH server allows unauthenticated remote code execution on affected Linux systems, dubbed 'regreSSHion 2' as a follow-up to last year's CVE-2024-6387.
A critical authentication bypass in ASUS router firmware allows unauthenticated attackers to remotely take over affected routers, with botnets already scanning for and exploiting vulnerable devices.
A critical heap overflow vulnerability in VMware ESXi allows an attacker with local admin privileges on a guest VM to escape the sandbox and execute code on the hypervisor host.
A new critical SQL injection vulnerability in MOVEit Transfer is being exploited by the Cl0p ransomware group, echoing the devastating 2023 campaign that compromised thousands of organizations worldwide.
Microsoft's June Patch Tuesday addresses over 50 vulnerabilities including a Windows kernel privilege escalation flaw being exploited in the wild by advanced threat actors.
A critical OGNL injection vulnerability in Atlassian Confluence Server and Data Center allows unauthenticated remote code execution, with ransomware groups actively exploiting unpatched instances.
Google released an emergency Chrome update fixing a high-severity type confusion vulnerability in V8 that was being exploited in targeted attacks against users in the wild.
Two vulnerabilities in Ivanti Endpoint Manager Mobile can be chained to achieve unauthenticated remote code execution, with active exploitation targeting government and critical infrastructure organizations.
Microsoft's May 2025 Patch Tuesday addresses over 70 vulnerabilities including five zero-days under active exploitation across Windows kernel, scripting engine, and DWM components.
A maximum-severity vulnerability in Cisco IOS XE for Wireless LAN Controllers allows unauthenticated attackers to upload arbitrary files and execute commands via a hard-coded JSON Web Token.
A critical zero-day in SAP NetWeaver Visual Composer is being actively exploited to upload webshells to enterprise SAP servers, enabling full remote control of critical business systems.
A critical vulnerability in the Erlang/OTP SSH library allows unauthenticated remote code execution with a perfect CVSS 10.0 score, affecting any application using the built-in SSH server.
Microsoft's April 2025 Patch Tuesday addresses a Windows Common Log File System zero-day being actively exploited by the RansomEXX ransomware group for privilege escalation.
A critical authentication bypass in CrushFTP allows unauthenticated attackers to access administrative functions through crafted HTTP requests, with exploitation already observed in the wild.
Four critical vulnerabilities in the Kubernetes ingress-nginx controller, collectively dubbed IngressNightmare, could allow unauthenticated attackers to take over Kubernetes clusters hosting 40% of cloud workloads.
A critical authorization bypass vulnerability in the Next.js framework allows attackers to skip middleware-based security checks by manipulating request headers, potentially affecting millions of web applications.
A critical remote code execution vulnerability in Apache Tomcat allows attackers to upload and execute arbitrary code via partial PUT requests, with active exploitation observed within 30 hours of disclosure.
Microsoft's March 2025 Patch Tuesday is one of the most critical in recent memory, fixing six actively exploited zero-day vulnerabilities across NTFS, the Win32 kernel subsystem, and Microsoft Management Console.
Three VMware zero-day vulnerabilities in ESXi, Workstation, and Fusion are being actively exploited, enabling attackers to escape virtual machines and compromise hypervisors.
A SQL injection zero-day in PostgreSQL's interactive tool was exploited alongside the BeyondTrust Remote Support zero-day to compromise US Treasury Department systems.
A critical authentication bypass in Palo Alto Networks PAN-OS management interface is being chained with other vulnerabilities to achieve remote code execution on firewalls.
Microsoft's February 2025 Patch Tuesday addresses over 55 vulnerabilities including multiple zero-days under active exploitation in Windows, with critical flaws in NTLMv2 and LDAP.
Google's February Android security update patches an actively exploited Linux kernel USB-video class vulnerability that enabled privilege escalation on Android devices.
Cisco has released patches for multiple critical vulnerabilities in Identity Services Engine that could allow authenticated attackers to execute arbitrary commands as root.
Threat actors are actively exploiting command injection vulnerabilities in Zyxel CPE series devices, with no patches available from the vendor for affected end-of-life products.
Critical vulnerabilities in SimpleHelp remote monitoring and management software are being exploited by threat actors to gain unauthorized access to managed client networks.
Apple released emergency security updates to fix a zero-day vulnerability in the CoreMedia framework that was being actively exploited against devices running older iOS versions.
Microsoft's January 2025 Patch Tuesday addresses 159 vulnerabilities including eight zero-days, three of which are under active exploitation in Windows Hyper-V and Windows components.
A critical authentication bypass in FortiOS and FortiProxy is being actively exploited, allowing remote attackers to gain super-admin privileges on affected firewalls.
Multiple critical vulnerabilities in Moxa industrial networking devices could allow attackers to gain root access to OT and ICS infrastructure.
A critical zero-day vulnerability in Ivanti Connect Secure VPN appliances is being actively exploited by threat actors to gain unauthenticated remote code execution.
A vulnerability in Nuclei, an open-source vulnerability scanner, allowed attackers to bypass signature verification and execute malicious code via templates on local systems.
A new attack technique, DoubleClickjacking, exploits double-clicks to bypass existing clickjacking protections and hijack user accounts. This poses a significant risk as it can be used to authorize sensitive actions without users' knowledge.
Over three million mail servers are exposed without TLS encryption, allowing potential sniffing attacks and data interception.