Vulnerebility List - 2026 2025 2024 2023 2021 2020 2019 2018
DATE | NAME |
Info | CATEG. |
WEB |
| 14.5.26 | Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation | An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a | Vulnerebility | The Hacker News |
| 14.5.26 | New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption | Details have emerged about a new variant of the recent Dirty Frag Linux local privilege escalation (LPE) vulnerability that allows local attackers to | Vulnerebility | The Hacker News |
| 14.5.26 | 18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE | Cybersecurity researchers have disclosed multiple security vulnerabilities impacting NGINX Plus and NGINX Open, including a critical flaw that | Vulnerebility | The Hacker News |
| 14.5.26 | SAP fixes critical vulnerabilities in Commerce Cloud and S/4HANA | SAP has released the May 2026 security updates addressing 15 vulnerabilities across multiple products, including two critical flaws in the Commerce Cloud enterprise-grade e-commerce platform and the S/4HANA ERP suite. | Vulnerebility | BleepingComputer |
| 14.5.26 | Instructure confirms hackers used Canvas flaw to deface portals | Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login portals and leave an extortion message. | Vulnerebility | BleepingComputer |
| 13.5.26 | New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution | Exim has released security updates to address a severe security issue affecting certain configurations that could enable memory corruption and | Vulnerebility | The Hacker News |
| 12.5.26 | cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor | A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed | Vulnerebility | The Hacker News |
| 10.5.26 | Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak | Cybersecurity researchers have disclosed a critical security vulnerability in Ollama that, if successfully exploited, could allow a remote, | Vulnerebility | The Hacker News |
| 10.5.26 | New Linux 'Dirty Frag' zero-day gives root on all major distros | A new Linux zero-day exploit, named Dirty Frag, allows local attackers to gain root privileges on most major Linux distributions with a single command. | Vulnerebility | BleepingComputer |
| 10.5.26 | Critical vm2 sandbox bug lets attackers execute code on hosts | A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary code on the host system. | Vulnerebility | BleepingComputer |
| 10.5.26 | New Cisco DoS flaw requires manual reboot to revive devices | Cisco patched a Crosswork Network Controller and Network Services Orchestrator denial-of-service vulnerability that requires manually rebooting targeted systems for recovery. | Vulnerebility | BleepingComputer |
| 9.5.26 | Another Universal Linux Local Privilege Escalation (LPE) Vulnerability: Dirty Frag | Less than two weeks after the public disclosure of the Copy Fail vulnerability (CVE-2026-31431), another local privilege escalation (LPE) vulnerability in the Linux kernel has been revealed. | Vulnerebility | SANS |
| 9.5.26 | cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now | cPanel has released updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that could be exploited to achieve | Vulnerebility | The Hacker News |
| 9.5.26 | Weaver E-cology critical bug exploited in attacks since March | Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation since mid-March to run discovery commands. | Vulnerebility | BleepingComputer |
| 9.5.26 | Progress warns of critical MOVEit Automation auth bypass flaw | Progress Software warned customers to patch a critical authentication bypass vulnerability in its MOVEit Automation enterprise-grade managed file transfer (MFT) application. | Vulnerebility | BleepingComputer |
| 7.5.26 | vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution | A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the | Vulnerebility | The Hacker News |
| 6.5.26 | Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE | The Apache Software Foundation (ASF) has released security updates to address several security vulnerabilities in the HTTP Server, including a | Vulnerebility | The Hacker News |
| 5.5.26 | Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API | A critical security vulnerability in Weaver (Fanwei) E-cology , an enterprise office automation (OA) and collaboration platform, has come under | Vulnerebility | The Hacker News |
| 5.5.26 | Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass | Progress Software has released updates to address two security flaws in MOVEit Automation, including a critical bug that could result in an | Vulnerebility | The Hacker News |
| 4.5.26 | Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks | A previously unknown threat actor has been observed targeting government and military entities in Southeast Asia, alongside a smaller | Vulnerebility | The Hacker News |
| 3.5.26 | New Linux ‘Copy Fail’ flaw gives hackers root on major distros | An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root permissions. | Vulnerebility | |
| 2.5.26 | cPanel, WHM emergency update fixes critical auth bypass bug | A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be exploited to obtain access to the control panel without authentication. | Vulnerebility | BleepingComputer |
| 2.5.26 | GitHub fixes RCE flaw that gave access to millions of private repos | In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed attackers to access millions of private repositories. | Vulnerebility | BleepingComputer |
| 30.4.26 | New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions | Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw that could allow an unprivileged local user to obtain root. | Vulnerebility | The Hacker News |
| 29.4.26 | Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately | cPanel has released security updates to address a security issue impacting various authentication paths that could allow an attacker to obtain access to | Vulnerebility | The Hacker News |
| 29.4.26 | LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure | In yet another instance of threat actors quickly jumping on the exploitation bandwagon, a newly disclosed critical security flaw in BerriAI's LiteLLM Python | Vulnerebility | The Hacker News |
| 29.4.26 | Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push | Cybersecurity researchers have disclosed details of a critical security vulnerability impacting GitHub.com and GitHub Enterprise Server that could | Vulnerebility | The Hacker News |
| 28.4.26 | Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE | Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot , Hugging Face's open-source robotics platform with nearly | Vulnerebility | The Hacker News |
| 28.4.26 | Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover | An administrative role meant for artificial intelligence (AI) agents within Microsoft Entra ID could enable privilege escalation and identity takeover | Vulnerebility | The Hacker News |
| s28.4.26 | Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202 | Microsoft on Monday revised its advisory for a now-patched, high-severity security flaw impacting Windows Shell to acknowledge that it has been | Vulnerebility | The Hacker News |
| 26.4.26 | Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks | Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a cross-site scripting (XSS) security flaw. | Vulnerebility | BleepingComputer |
| 25.4.26 | Microsoft releases emergency patches for critical ASP.NET flaw | Microsoft has released out-of-band (OOB) security updates to patch a critical ASP.NET Core privilege escalation vulnerability. | Vulnerebility | BleepingComputer |
| 25.4.26 | Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks | Over 1,300 Microsoft SharePoint servers exposed online remain unpatched against a spoofing vulnerability that was exploited as a zero-day and is still being abused in ongoing attacks. | Vulnerebility | |
| 24.4.26 | LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure | A high-severity security flaw in LMDeploy , an open-source toolkit for compressing, deploying, and serving LLMs, has come under active exploitation | Vulnerebility | The Hacker News |
| 22.4.26 | Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug | Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges. The | Vulnerebility | The Hacker News |
| 22.4.26 | 22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters | Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix and Silex that could be | Vulnerebility | The Hacker News |
| 21.4.26 | Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution | Cybersecurity researchers have discovered a vulnerability in Google's agentic integrated development environment (IDE), Antigravity, that could be exploited | Vulnerebility | The Hacker News |
| 21.4.26 | SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files | A critical security vulnerability has been disclosed in SGLang that, if successfully exploited, could result in remote code execution on susceptible | Vulnerebility | The Hacker News |
| 19.4.26 | Critical flaw in Protobuf library enables JavaScript code execution | Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. | Vulnerebility | BleepingComputer |
| 19.4.26 | Cisco says critical Webex Services flaw requires customer action | Cisco has released security updates to patch four critical vulnerabilities, including a fixed improper certificate validation flaw in the company's cloud-based Webex Services platform that requires further customer action. | Vulnerebility | |
| 18.4.26 | Critical flaw in wolfSSL library enables forged certificate use | A critical vulnerability in the wolfSSL SSL/TLS library can weaken security via improper verification of the hash algorithm or its size when checking Elliptic Curve Digital Signature Algorithm (ECDSA) signatures. | Vulnerebility | BleepingComputer |
| 18.4.26 | Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw | Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that has been exploited in zero-day attacks since at least December. | Vulnerebility | |
| 18.4.26 | Critical Marimo pre-auth RCE flaw now under active exploitation | A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged for credential theft. | Vulnerebility | BleepingComputer |
| 17.4.26 | NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions | The National Institute of Standards and Technology (NIST) has announced changes to the way it handles cybersecurity vulnerabilities and exposures | Vulnerebility | The Hacker News |
| 17.4.26 | Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation | A recently disclosed high-severity security flaw in Apache ActiveMQ Classic has come under active exploitation in the wild, per the U.S. Cybersecurity and | Vulnerebility | The Hacker News |
| 16.4.26 | Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution | Cisco has announced patches to address four critical security flaws impacting Identity Services and Webex Services that could result in arbitrary code | Vulnerebility | The Hacker News |
| 15.4.26 | Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover | A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management tool, has come under active exploitation in | Vulnerebility | The Hacker News |
| 15.4.26 | April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More | A number of critical vulnerabilities impacting products from Adobe, Fortinet, Microsoft, and SAP have taken center stage in April's Patch Tuesday releases. | Vulnerebility | The Hacker News |
| 15.4.26 | New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released | Two high-severity security vulnerabilities have been disclosed in Composer, a package manager for PHP, that, if successfully exploited, could result in | Vulnerebility | The Hacker News |
| 14.4.26 | ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers | A critical security vulnerability impacting ShowDoc , a document management and collaboration service popular in China, has come under active exploitation | Vulnerebility | The Hacker News |
| 13.4.26 | Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 | Adobe has released emergency updates to fix a critical security flaw in Acrobat Reader that has come under active exploitation in the wild. The | Vulnerebility | The Hacker News |
| 12.4.26 | Analysis of one billion CISA KEV remediation records exposes limits of human-scale security | Analysis of 1 billion CISA KEV remediation records reveal a breaking point for human-scale security. Qualys shows most critical flaws are exploited before defenders can patch them. | Vulnerebility | |
| 12.4.26 | CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday | CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January. | Vulnerebility | |
| 12.4.26 | 13-year-old bug in ActiveMQ lets hackers remotely execute commands | Security researchers discovered a remote code execution (RCE) vulnerability in Apache ActiveMQ Classic that has gone undetected for 13 years and could be exploited to execute arbitrary commands | Vulnerebility | |
| 8.4.26 | Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access | A high-severity security vulnerability has been disclosed in Docker Engine that could permit an attacker to bypass authorization plugins ( AuthZ ) under | Vulnerebility | The Hacker News |
| 6.4.26 | New FortiClient EMS flaw exploited in attacks, emergency patch released | Fortinet has released an emergency weekend security update for a new critical FortiClient Enterprise Management Server (EMS) vulnerability that is actively exploited in attacks. | Vulnerebility | BleepingComputer |
| 6.4.26 | Hackers exploit React2Shell in automated credential theft campaign | Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell (CVE-2025-55182) in vulnerable Next.js apps. | Vulnerebility | |
| 6.4.26 | New Progress ShareFile flaws can be chained in pre-auth RCE attacks | Two vulnerabilities in Progress ShareFile, an enterprise-grade secure file transfer solution, can be chained to enable unauthenticated file exfiltration from affected environments. | Vulnerebility | |
| 5.4.26 | Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS | Fortinet has released out-of-band patches for a critical security flaw impacting FortiClient EMS that it said has been exploited in the wild. The vulnerability, | Vulnerebility | The Hacker News |
| 5.4.26 | Critical Cisco IMC auth bypass gives attackers Admin access | Cisco has patched several critical and high-severity vulnerabilities, including an Integrated Management Controller (IMC) authentication bypass that enables attackers to gain Admin access. | Vulnerebility | |
| 5.4.26 | Over 14,000 F5 BIG-IP APM instances still exposed to RCE attacks | Internet security watchdog Shadowserver has found over 14,000 BIG-IP APM instances exposed online amid ongoing attacks exploiting a critical-severity remote code execution (RCE) vulnerability. | Vulnerebility | |
| 4.4.26 | GIGABYTE Control Center vulnerable to arbitrary file write flaw | The GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that could allow a remote, unauthenticated attacker to access files on vulnerable hosts. | Vulnerebility | |
| 4.4.26 | Critical Citrix NetScaler memory flaw actively exploited in attacks | Hackers are exploiting a critical severity vulnerability, tracked as CVE-2026-3055, in Citrix NetScaler ADC and NetScaler Gateway appliances to obtain sensitive data. | Vulnerebility | BleepingComputer |
| 2.4.26 | Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System Compromise | Cisco has released updates to address a critical security flaw in the Integrated Management Controller (IMC) that, if successfully exploited, could allow an | Vulnerebility | The Hacker News |
| 1.4.26 | Hackers exploiting critical F5 BIG-IP flaw in attacks, patch now | F5 has reclassified a BIG-IP APM denial-of-service (DoS) vulnerability as a critical-severity remote code execution (RCE) flaw, warning that attackers are exploiting it to deploy webshells on unpatched devices. | Vulnerebility | |
| 1.4.26 | Critical Fortinet Forticlient EMS flaw now exploited in attacks | Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused. | Vulnerebility | |
| 1.4.26 | File read flaw in Smart Slider plugin impacts 500K WordPress sites | A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server. | Vulnerebility | BleepingComputer |
| 29.3.26 | Citrix urges admins to patch NetScaler flaws as soon as possible | Citrix has patched two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is very similar to the CitrixBleed and CitrixBleed2 flaws exploited in zero-day attacks in recent years. | Vulnerebility | BleepingComputer |
| 28.3.26 | Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug | A recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to | Vulnerebility | The Hacker News |
| 28.3.26 | CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw impacting F5 BIG-IP Access Policy Manager | Vulnerebility | The Hacker News |
| 28.3.26 | TP-Link warns users to patch critical router auth bypass flaw | TP-Link has patched several vulnerabilities in its Archer NX router series, including a critical-severity flaw that may allow attackers to bypass authentication and upload new firmware. | Vulnerebility | |
| 27.3.26 | Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks | Cybersecurity researchers have disclosed details of a now-patched bug impacting Open VSX's pre-publish scanning pipeline to cause the tool to allow | Vulnerebility | The Hacker News |
| 24.3.26 | Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks | Citrix has released security updates to address two vulnerabilities in NetScaler ADC and NetScaler Gateway, including a critical flaw that could be exploited to | Vulnerebility | The Hacker News |
| 22.3.26 | Trivy vulnerability scanner breach pushed infostealer via GitHub Actions | The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing malware through official releases and GitHub Actions. | Vulnerebility | |
| 22.3.26 | Oracle pushes emergency fix for critical Identity Manager RCE flaw | Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992. | Vulnerebility | BleepingComputer |
| 22.3.26 | CISA orders feds to patch max-severity Cisco flaw by Sunday | The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity vulnerability, CVE-2026-20131, in Cisco Secure Firewall Management Center (FMC) by Sunday, March 22. | Vulnerebility | BleepingComputer |
| 22.3.26 | New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores | A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 installations, allowing unauthenticated code execution and account takeover. | Vulnerebility | |
| 21.3.26 | Max severity Ubiquiti UniFi flaw may allow account takeover | Ubiquiti has patched two vulnerabilities in the UniFi Network Application, including a maximum-severity flaw that may allow attackers to take over user accounts. | Vulnerebility | BleepingComputer |
| 21.3.26 | ConnectWise patches new flaw allowing ScreenConnect hijacking | ConnectWise is warning ScreenConnect customers of a cryptographic signature verification vulnerability that could lead to unauthorized access and privilege escalation. | Vulnerebility | |
| 21.3.26 | Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager | Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited | Vulnerebility | The Hacker News |
| 20.3.26 | Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure | A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed at which threat | Vulnerebility | The Hacker News |
| 18.3.26 | Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE | Cybersecurity researchers have disclosed a critical security flaw impacting the GNU InetUtils telnet daemon (telnetd) that could be exploited by an | Vulnerebility | The Hacker News |
| 18.3.26 | 9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors | Cybersecurity researchers have warned about the risks posed by low-cost IP KVM (Keyboard, Video, Mouse over Internet Protocol) devices, which can grant | Vulnerebility | The Hacker News |
| 18.3.26 | Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit | A high-severity security flaw affecting default installations of Ubuntu Desktop versions 24.04 and later could be exploited to escalate privileges to the root | Vulnerebility | The Hacker News |
| 15.3.26 | Veeam warns of critical flaws exposing backup servers to RCE attacks | Data protection company Veeam Software has patched multiple flaws in its Backup & Replication solution, including four critical remote code execution (RCE) vulnerabilities. | Vulnerebility | BleepingComputer |
| 15.3.26 | Google paid $17.1 million for vulnerability reports in 2025 | Google paid over $17 million to 747 security researchers who reported security bugs through its Vulnerability Reward Program (VRP) in 2025. | Vulnerebility | |
| 15.3.26 | SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites | An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without authentication. | Vulnerebility | BleepingComputer |
| 14.3.26 | Microsoft releases Windows 10 KB5078885 extended security update | Microsoft has released the Windows 10 KB5078885 extended security update to fix the March 2026 Patch Tuesday vulnerabilities, including 2 zero-days and an issue that prevent some devices from shutting down. | Vulnerebility | BleepingComputer |
| 14.3.26 | Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws | Today is Microsoft's March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day vulnerabilities. | Vulnerebility | |
| 14.3.26 | Windows 11 KB5079473 & KB5078883 cumulative updates released | Microsoft has released Windows 11 KB5079473 and KB5078883 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. | Vulnerebility | |
| 14.3.26 | HPE warns of critical AOS-CX flaw allowing admin password resets | Hewlett Packard Enterprise (HPE) has patched multiple security vulnerabilities in the Aruba Networking AOS-CX operating system, including several authentication and code execution issues. | Vulnerebility | |
| 14.3.26 | CISA: Recently patched Ivanti EPM flaw now actively exploited | CISA flagged a high-severity Ivanti Endpoint Manager (EPM) vulnerability as actively exploited in attacks and ordered U.S. federal agencies to patch systems within three weeks. | Vulnerebility | |
| 14.3.26 | Google: Cloud attacks exploit flaws more than weak credentials | Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days. | Vulnerebility | BleepingComputer |
| 13.3.26 | Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation | Cybersecurity researchers have disclosed multiple security vulnerabilities within the Linux kernel's AppArmor module that could be exploited by | Vulnerebility | The Hacker News |
| 13.3.26 | Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution | Veeam has released security updates to address multiple critical vulnerabilities in its Backup & Replication software that, if successfully | Vulnerebility | The Hacker News |
| 11.3.26 | Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials | Cybersecurity researchers have disclosed details of two now-patched security flaws in the n8n workflow automation platform, including two critical bugs that | Vulnerebility | The Hacker News |
| 11.3.26 | Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network Devices | SAP has released security updates to address two critical security flaws that could be exploited to achieve arbitrary code execution on affected systems. | Vulnerebility | The Hacker News |
| 10.3.26 | New "LeakyLooker" Flaws in Google Looker Studio Could Enable Cross-Tenant SQL Queries | Cybersecurity researchers have disclosed nine cross-tenant vulnerabilities in Google Looker Studio that could have permitted attackers to run arbitrary SQL | Vulnerebility | The Hacker News |
| 7.3.26 | Cisco warns of max severity Secure FMC flaws giving root access | Cisco has released security updates to patch two maximum-severity vulnerabilities in its Secure Firewall Management Center (FMC) software. | Vulnerebility | |
| 6.3.26 | Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Hikvision and Rockwell Automation | Vulnerebility | The Hacker News |
| 3.3.26 | Google Confirms CVE-2026-21385 in Qualcomm Android Component Exploited | Google on Monday disclosed that a high-severity security flaw impacting an open-source Qualcomm component used in Android devices has been | Vulnerebility | The Hacker News |
| 1.3.26 | Third-Party Patching and the Business Footprint We All Share | Everyday tools like PDF readers, email clients, and archive utilities quietly define the real attack surface. Action1 explains how third-party software drift increases exploit risk and why consistent patching reduces exposure across endpoints. | Vulnerebility | |
| 1.3.26 | Trend Micro warns of critical Apex One code execution flaws | Trend Micro has patched two critical Apex One vulnerabilities that allow attackers to gain remote code execution (RCE) on vulnerable Windows systems. | Vulnerebility | |
| 1.3.26 | Critical Juniper Networks PTX flaw allows full router takeover | A critical vulnerability in the Junos OS Evolved network operating system running on PTX Series routers from Juniper Networks could allow an unauthenticated attacker to execute code remotely with root privileges. | Vulnerebility | |
| 1.3.26 | Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023 | Cisco is warning that a critical authentication bypass vulnerability in Cisco Catalyst SD-WAN, tracked as CVE-2026-20127, was actively exploited in zero-day attacks that allowed remote attackers to compromise controllers and add malicious rogue peers to targeted networks. | Vulnerebility | |
| 1.3.26 | The OpenClaw Hype: Analysis of Chatter from Open-Source Deep and Dark Web | OpenClaw has sparked heavy Telegram and dark web chatter, but Flare's data shows more research hype than mass exploitation. Flare explains how its telemetry found real supply-chain risk in the skills marketplace, yet limited signs of large-scale criminal operationalization. | Vulnerebility | BleepingComputer |
| 1.3.26 | Zyxel warns of critical RCE flaw affecting over a dozen routers | Taiwan networking provider Zyxel has released security updates to address a critical vulnerability affecting over a dozen router models that can allow unauthenticated attackers to gain remote command execution on unpatched devices. | Vulnerebility | |
| 28.2.26 | Ex-L3Harris exec jailed for selling zero-days to Russian exploit broker | The former head of Trenchant, a specialized U.S. defense contractor unit, was sentenced Tuesday to more than seven years in federal prison for stealing and selling zero-day exploits to a Russian broker whose clients include the Russian government. | Vulnerebility | |
| 28.2.26 | Critical SolarWinds Serv-U flaws offer root access to servers | SolarWinds has patched four critical Serv-U remote code execution vulnerabilities that could grant attackers root access to unpatched servers. | Vulnerebility | |
| 26.2.26 | Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access | A newly disclosed maximum-severity security flaw in Cisco Catalyst SD-WAN Controller (formerly vSmart) and Catalyst SD-WAN Manager (formerly | Vulnerebility | The Hacker News |
| 26.2.26 | SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution | SolarWinds has released updates to address four critical security flaws in its Serv-U file transfer software that, if successfully exploited, could result in | Vulnerebility | The Hacker News |
| 26.2.26 | CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed vulnerability in FileZen to its Known Exploited | Vulnerebility | The Hacker News |
| 26.2.26 | RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN | A vulnerability in GitHub Codespaces could have been exploited by bad actors to seize control of repositories by injecting malicious Copilot instructions in a | Vulnerebility | The Hacker News |
| 22.2.26 | Flaw in Grandstream VoIP phones allows stealthy eavesdropping | A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently eavesdrop on communications. | Vulnerebility | |
| 22.2.26 | Critical infra Honeywell CCTVs vulnerable to auth bypass flaw | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of a critical vulnerability in multiple Honeywell CCTV products that allows unauthorized access to feeds or account hijacking. | Vulnerebility | |
| 20.2.26 | BeyondTrust Flaw Used for Web Shells, Backdoors, and Data Exfiltration | Threat actors have been observed exploiting a recently disclosed critical security flaw impacting BeyondTrust Remote Support (RS) and Privileged | Vulnerebility | The Hacker News |
| 20.2.26 | Cline CLI 2.3.0 Supply Chain Attack Installed OpenClaw on Developer Systems | In yet another software supply chain attack, the open-source, artificial intelligence (AI)-powered coding assistant Cline CLI was updated to stealthily | Vulnerebility | The Hacker News |
| 20.2.26 | Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center | Microsoft has disclosed a now-patched security flaw in Windows Admin Center that could allow an attacker to escalate their privileges. Windows | Vulnerebility | The Hacker News |
| 18.2.26 | Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution | Cybersecurity researchers have disclosed a critical security flaw in the Grandstream GXP1600 series of VoIP phones that could allow an attacker to | Vulnerebility | The Hacker News |
| 18.2.26 | Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs | Cybersecurity researchers have disclosed multiple security vulnerabilities in four popular Microsoft Visual Studio Code (VS Code) extensions that, if | Vulnerebility | The Hacker News |
| 18.2.26 | Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024 | A maximum severity security vulnerability in Dell RecoverPoint for Virtual Machines has been exploited as a zero-day by a suspected China-nexus threat | Vulnerebility | The Hacker News |
| 15.2.26 | One threat actor responsible for 83% of recent Ivanti RCE attacks | Threat intelligence observations show that a single threat actor is responsible for most of the active exploitation of two critical vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM), tracked as CVE-2026-21962 and CVE-2026-24061. | Vulnerebility | |
| 15.2.26 | CISA flags critical Microsoft SCCM flaw as exploited in attacks | CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks. | Vulnerebility | |
| 15.2.26 | Microsoft fixes bug that blocked Google Chrome from launching | Microsoft has fixed a known issue causing its Family Safety parental control service to block Windows users from launching Google Chrome and other web browsers. | Vulnerebility | |
| 15.2.26 | WordPress plugin with 900k installs vulnerable to critical RCE flaw | A critical vulnerability in the WPvivid Backup & Migration plugin for WordPress, installed on more than 900,000 websites, can be exploited to achieve remote code execution by uploading arbitrary files without authentication. | Vulnerebility | |
| 12.2.26 | Hackers exploit SolarWinds WHD flaws to deploy DFIR tool in attacks | Hackers are now exploiting SolarWinds Web Help Desk (WHD) vulnerabilities to gain code execution rights on exposed systems and deploy legitimate tools, including the Velociraptor forensics tools, for persistence and remote control. | Vulnerebility | |
| 12.2.26 | BeyondTrust warns of critical RCE flaw in remote support software | BeyondTrust warned customers to patch a critical security flaw in its Remote Support (RS) and Privileged Remote Access (PRA) software that could allow unauthenticated attackers to execute arbitrary code remotely. | Vulnerebility | |
| 11.2.26 | Over 60 Software Vendors Issue Security Fixes Across OS, Cloud, and Network Platforms | It's Patch Tuesday, which means a number of software vendors have released patches for various security vulnerabilities impacting their products and | Vulnerebility | The Hacker News |
| 10.2.26 | Fortinet Patches Critical SQLi Flaw Enabling Unauthenticated Code Execution | Fortinet has released security updates to address a critical flaw impacting FortiClientEMS that could lead to the execution of arbitrary code on | Vulnerebility | The Hacker News |
| 9.2.26 | BeyondTrust Fixes Critical Pre-Auth RCE Vulnerability in Remote Support and PRA | BeyondTrust has released updates to address a critical security flaw impacting Remote Support (RS) and Privileged Remote Access (PRA) products that, if | Vulnerebility | The Hacker News |
| 8.2.26 | CISA warns of SmarterMail RCE flaw used in ransomware attacks | The Cybersecurity & Infrastructure Security Agency (CISA) in the U.S. has issued a warning about CVE-2026-24423, an unauthenticated remote code execution (RCE) flaw in SmarterMail that is used in ransomware attacks. | Vulnerebility | |
| 7.2.26 | CISA flags critical SolarWinds RCE flaw as exploited in attacks | CISA has flagged a critical SolarWinds Web Help Desk vulnerability as actively exploited in attacks and ordered federal agencies to patch their systems within three days. | Vulnerebility | |
| 7.2.26 | Hackers exploit critical React Native Metro bug to breach dev systems | Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native to deliver malicious payloads for Windows and Linux. | Vulnerebility | |
| 7.2.26 | Russian hackers exploit recently patched Microsoft Office bug in attacks | Ukraine's Computer Emergency Response Team (CERT) says that Russian hackers are exploiting CVE-2026-21509, a recently patched vulnerability in multiple versions of Microsoft Office. | Vulnerebility | |
| 5.2.26 | Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows | A new, critical security vulnerability has been disclosed in the n8n workflow automation platform that, if successfully exploited, could result in the | Vulnerebility | The Hacker News |
| 3.2.26 | Hackers Exploit Metro4Shell RCE Flaw in React Native CLI npm Package | Threat actors have been observed exploiting a critical security flaw impacting the Metro Development Server in the popular "@react-native-community/cli" | Vulnerebility | The Hacker News |
| 3.2.26 | New sandbox escape flaw exposes n8n instances to RCE attacks | Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host. | Vulnerebility | |
| 3.2.26 | SolarWinds warns of critical Web Help Desk RCE, auth bypass flaws | SolarWinds has released security updates to patch critical authentication bypass and remote command execution vulnerabilities in its Web Help Desk IT help desk software. | Vulnerebility | |
| 3.2.26 | Fortinet blocks exploited FortiCloud SSO zero day until patch is ready | Fortinet has confirmed a new, actively exploited critical FortiCloud single sign-on (SSO) authentication bypass vulnerability, tracked as CVE-2026-24858, and says it has mitigated the zero-day attacks by blocking FortiCloud SSO connections from devices running vulnerable firmware versions. | Vulnerebility | |
| 3.2.26 | WinRAR path traversal flaw still exploited by numerous hackers | Multiple threat actors, both state-sponsored and financially motivated, are exploiting the CVE-2025-8088 high-severity vulnerability in WinRAR for initial access and to deliver various malicious payloads. | Vulnerebility | |
| 3.2.26 | Critical sandbox escape flaw found in popular vm2 NodeJS library | A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system. | Vulnerebility | |
| 3.2.26 | OpenClaw Bug Enables One-Click Remote Code Execution via Malicious Link | A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as Clawdbot and Moltbot) that could allow remote code execution | Vulnerebility | The Hacker News |
| 30.1.26 | SmarterMail Fixes Critical Unauthenticated RCE Flaw with CVSS 9.3 Score | SmarterTools has addressed two more security flaws in SmarterMail email software, including one critical security flaw that could result in arbitrary code | Vulnerebility | The Hacker News |
| 30.1.26 | SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass | SolarWinds has released security updates to address multiple security vulnerabilities impacting SolarWinds Web Help Desk, including four critical | Vulnerebility | The Hacker News |
| 28.1.26 | Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088 | The Google Threat Intelligence Group (GTIG) has identified widespread, active exploitation of the critical vulnerability CVE-2025-8088 in WinRAR, a popular file archiver tool for Windows, to establish initial access and deliver diverse payloads. | Vulnerebility | GTI |
| 28.1.26 | Critical vm2 Node.js Flaw Allows Sandbox Escape and Arbitrary Code Execution | A critical sandbox escape vulnerability has been disclosed in the popular vm2 Node.js library that, if successfully exploited, could allow attackers to run arbitrary code on the underlying operating system. | Vulnerebility | The Hacker News |
| 28.1.26 | Two High-Severity n8n Flaws Allow Authenticated Remote Code Execution | Cybersecurity researchers have disclosed two new security flaws in the n8n workflow automation platform, including a crucial vulnerability that could result in remote code execution. The weaknesses, discovered by the JFrog | Vulnerebility | The Hacker News |
| 28.1.26 | Fortinet Patches CVE-2026-24858 After Active FortiOS SSO Exploitation Detected | Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS that has come under active exploitation in the wild. The | Vulnerebility | The Hacker News |
| 28.1.26 | Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas | A critical security flaw has been disclosed in Grist‑Core , an open-source, self-hosted version of the Grist relational spreadsheet-database, that could result | Vulnerebility | The Hacker News |
| 25.1.26 | Fortinet confirms critical FortiCloud auth bypass not fully patched | Days after admins began reporting that their fully patched firewalls are being hacked, Fortinet confirmed it's working to fully address a critical FortiCloud SSO authentication bypass vulnerability that should have already been patched since early December. | Vulnerebility | |
| 25.1.26 | Cisco fixes Unified Communications RCE zero day exploited in attacks | Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been actively exploited as a zero-day in attacks. | Vulnerebility | |
| 25.1.26 | Fortinet admins report patched FortiGate firewalls getting hacked | Fortinet customers are seeing attackers exploiting a patch bypass for a previously fixed critical FortiGate authentication vulnerability (CVE-2025-59718) to hack patched firewalls. | Vulnerebility | |
| 25.1.26 | GitLab warns of high-severity 2FA bypass, denial-of-service flaws | GitLab has patched a high-severity two-factor authentication bypass impacting community and enterprise editions of its software development platform. | Vulnerebility | |
| 25.1.26 | ACF plugin bug gives hackers admin on 50,000 WordPress sites | A critical-severity vulnerability in the Advanced Custom Fields: Extended (ACF Extended) plugin for WordPress can be exploited remotely by unauthenticated attackers to obtain administrative permissions. | Vulnerebility | |
| 23.1.26 | Fortinet Confirms Active FortiCloud SSO Bypass on Fully Patched FortiGate Firewalls | Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched firewalls. "In the last 24 hours, we have | Vulnerebility | The Hacker News |
| 23.1.26 | Critical GNU InetUtils telnetd Flaw Lets Attackers Bypass Login and Gain Root Access | A critical security flaw has been disclosed in the GNU InetUtils telnet daemon ( telnetd ) that went unnoticed for nearly 11 years. The vulnerability, tracked as | Vulnerebility | The Hacker News |
| 22.1.26 | Cisco Fixes Actively Exploited Zero-Day CVE-2026-20045 in Unified CM and Webex | Cisco has released fresh patches to address what it described as a "critical" security vulnerability impacting multiple Unified Communications (CM) | Vulnerebility | The Hacker News |
| 22.1.26 | CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution | A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary | Vulnerebility | The Hacker News |
| 22.1.26 | CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution | A security vulnerability has been disclosed in the popular binary-parser npm library that, if successfully exploited, could result in the execution of arbitrary | Vulnerebility | The Hacker News |
| 20.1.26 | Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers | Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment ( ACME ) validation logic that made it | Vulnerebility | The Hacker News |
| 19.1.26 |
New StackWarp Hardware Flaw Breaks AMD SEV-SNP Protections on Zen 1–5 CPUs |
A team of academics from the CISPA Helmholtz Center for Information Security in Germany has disclosed the details of a new hardware vulnerability | Vulnerebility | The Hacker News |
| 18.1.26 | Critical WhisperPair flaw lets hackers track, eavesdrop via Bluetooth audio devices | A critical vulnerability in Google's Fast Pair protocol can allow attackers to hijack Bluetooth audio accessories like wireless headphones and earbuds, track users, and eavesdrop on their conversations. | Vulnerebility | |
| 18.1.26 | Palo Alto Networks warns of DoS bug letting hackers disable firewalls | Palo Alto Networks patched a high-severity vulnerability that could allow unauthenticated attackers to disable firewall protections in denial-of-service (DoS) attacks. | Vulnerebility | |
| 17.1.26 | Max severity Ni8mare flaw impacts nearly 60,000 n8n instances | Nearly 60,000 n8n instances exposed online remain unpatched against a maximum-severity vulnerability dubbed "Ni8mare." | Vulnerebility | |
| 16.1.26 | Palo Alto Fixes GlobalProtect DoS Flaw That Can Crash Firewalls Without Login | Palo Alto Networks has released security updates for a high-severity security flaw impacting GlobalProtect Gateway and Portal, for which it said there exists a proof-of-concept (PoC) | Vulnerebility | The Hacker News |
| 14.1.26 | Fortinet Fixes Critical FortiSIEM Flaw Allowing Unauthenticated Remote Code Execution | Fortinet has released updates to fix a critical security flaw impacting FortiSIEM that could allow an unauthenticated attacker to achieve code execution on susceptible instances. The | Vulnerebility | The Hacker News |
| 14.1.26 | Critical Node.js Vulnerability Can Cause Server Crashes via async_hooks Stack Overflow | Node.js has released updates to fix what it described as a critical security issue impacting "virtually every production Node.js app" that, if successfully exploited, could trigger a denial- | Vulnerebility | The Hacker News |
| 11.1.26 | Trend Micro warns of critical Apex Central RCE vulnerability | Japanese cybersecurity software firm Trend Micro has patched a critical security flaw in Apex Central (on-premise) that could allow attackers to execute arbitrary code with SYSTEM privileges. | Vulnerebility | |
| 10.1.26 | Cisco switches hit by reboot loops due to DNS client bug | Multiple Cisco switch models are suddenly experiencing reboot loops after logging fatal DNS client errors, according to reports seen by BleepingComputer. | Vulnerebility | |
| 10.1.26 | Critical jsPDF flaw lets hackers steal secrets via generated PDFs | The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that allows an attacker to steal sensitive data from the local filesystem by including it in generated files. | Vulnerebility | |
| 10.1.26 | Max severity Ni8mare flaw lets hackers hijack n8n servers | A maximum severity vulnerability dubbed "Ni8mare" allows remote, unauthenticated attackers to take control over locally deployed instances of the N8N workflow automation platform. | Vulnerebility | |
| 10.1.26 | New Veeam vulnerabilities expose backup servers to RCE attacks | Veeam released security updates to patch multiple security flaws in its Backup & Replication software, including a critical remote code execution (RCE) vulnerability. | Vulnerebility | |
| 10.1.26 | Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions | Trend Micro has released security updates to address multiple security vulnerabilities impacting on-premise versions of Apex Central for Windows, including a critical bug that | Vulnerebility | The Hacker News |
| 8.1.26 | Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances | Cybersecurity researchers have disclosed details of multiple critical-severity security flaws affecting Coolify , an open-source, self-hosting platform, that could result in authentication bypass and remote code execution. | Vulnerebility | The Hacker News |
| 7.1.26 | Critical n8n Vulnerability (CVSS 10.0) Allows Unauthenticated Attackers to Take Full Control | Cybersecurity researchers have disclosed details of yet another maximum-severity security flaw in n8n , a popular workflow automation platform, that allows an unauthenticated remote | Vulnerebility | The Hacker News |
| 7.1.26 | n8n Warns of CVSS 10.0 RCE Vulnerability Affecting Self-Hosted and Cloud Versions | Open-source workflow automation platform n8n has warned of a maximum-severity security flaw that, if successfully exploited, could result in authenticated remote code execution | Vulnerebility | The Hacker News |
| 7.1.26 | Veeam Patches Critical RCE Vulnerability with CVSS 9.0 in Backup & Replication | Veeam has released security updates to address multiple flaws in its Backup & Replication software, including a "critical" issue that could result in remote code execution (RCE). The | Vulnerebility | The Hacker News |
| 7.1.26 | Ongoing Attacks Exploiting Critical RCE Vulnerability in Legacy D-Link DSL Routers | A newly discovered critical security flaw in legacy D-Link DSL gateway routers has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-0625 (CVSS | Vulnerebility | The Hacker News |
| 7.1.26 | Unpatched Firmware Flaw Exposes TOTOLINK EX200 to Full Remote Device Takeover | The CERT Coordination Center (CERT/CC) has disclosed details of an unpatched security flaw impacting TOTOLINK EX200 wireless range extender that could allow a remote | Vulnerebility | The Hacker News |
| 6.1.26 | New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands | A new critical security vulnerability has been disclosed in n8n, an open-source workflow automation platform, that could enable an authenticated attacker to execute arbitrary system | Vulnerebility | The Hacker News |
| 3.1.26 | IBM warns of critical API Connect auth bypass vulnerability | IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could allow attackers to access apps remotely. | Vulnerebility | |
| 3.1.26 | Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed | A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the public web. | Vulnerebility |