Latest Cyber Security News & Threat Headlines

Recent Vulnerability Related Headlines

Prev Next

Oracle’s first monthly patch release fixes 35 flaws, including 11 rated ‘critical’ (www.csoonline.com)

01 Jun 2026

IBM WebSphere Server Vulnerable to Remote Code Execution Attack Via Crafted Request (cybersecuritynews.com)

01 Jun 2026

Critical Magento Cache Plugin Vulnerability Enables Remote Code Execution Attacks (cybersecuritynews.com)

01 Jun 2026

Critical MCP Toolbox Vulnerability Impacts Enterprise Database onnectors (cybersecuritynews.com)

01 Jun 2026

Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs (www.securityweek.com)

01 Jun 2026

Windows Netlogon RCE exploited, domain controllers at risk (CVE-2026-41089) (www.helpnetsecurity.com)

01 Jun 2026

CVE-2026-8732: The WP Maps Pro Flaw That Lets Anyone Create a WordPress Admin Without a Password (securityaffairs.com)

01 Jun 2026

Palo Alto VPN bug graduates from advisory to active exploitation (www.theregister.com)

01 Jun 2026

Flowise’s MCP implementation can run ghost commands (www.csoonline.com)

01 Jun 2026

Critical Plesk Vulnerability Let Users Execute Arbitrary Commands on the Server (cybersecuritynews.com)

01 Jun 2026

Containers on fire: from container escapes to supply chain attacks (securelist.com)

01 Jun 2026

Recent Palo Alto Networks Vulnerability Exploited for Weeks (www.securityweek.com)

01 Jun 2026

Hackers are exploiting Palo Alto GlobalProtect VPN authentication bypass (CVE-2026-0257) (www.helpnetsecurity.com)

01 Jun 2026

U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

01 Jun 2026

Microsoft Clarifies It Won’t Sue Security Researchers Amid Nightmare-Eclipse Controversy (cybersecuritynews.com)

01 Jun 2026

CyberDanube Security Research 20260528-0 | Multiple Vulnerabilities in Multiple Vulnerabilities in Mennekes Amtron Series (seclists.org)

01 Jun 2026

Windows Netlogon 0-Click RCE Vulnerability Now Actively Exploited In The Wild (cybersecuritynews.com)

31 May 2026

CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers (securityaffairs.com)

31 May 2026

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 99 (securityaffairs.com)

31 May 2026

Security Affairs newsletter Round 579 by Pierluigi Paganini – INTERNATIONAL EDITION (securityaffairs.com)

31 May 2026

CVE-2025-15504 lief-project LIEF ELF Binary Parser.tcc parse_binary null pointer dereference (msrc.microsoft.com)

31 May 2026

CVE-2024-36137 A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-write flag is…

31 May 2026

CVE-2024-22018 A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-read flag is…

31 May 2026

CVE-2026-28387 Potential Use-after-free in DANE Client Code (msrc.microsoft.com)

31 May 2026

CVE-2026-28388 NULL Pointer Dereference When Processing a Delta CRL (msrc.microsoft.com)

31 May 2026

CVE-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion (msrc.microsoft.com)

31 May 2026

CVE-2026-28389 Possible NULL Dereference When Processing CMS KeyAgreeRecipientInfo (msrc.microsoft.com)

31 May 2026

CVE-2017-3736 There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before…

31 May 2026

CVE-2026-28390 Possible NULL Dereference When Processing CMS KeyTransportRecipientInfo (msrc.microsoft.com)

31 May 2026

CVE-2025-23167 A flaw in Node.js 20's HTTP parser allows improper termination of HTTP/1 headers using `\r\n\rX` instead of the required…

31 May 2026

CVE-2026-33672 Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching (msrc.microsoft.com)

31 May 2026

CVE-2026-21717 A flaw in V8's string hashing mechanism causes integer-like strings to be hashed to their numeric value, making hash…

31 May 2026

CVE-2026-2673 OpenSSL TLS 1.3 server may choose unexpected key agreement group (msrc.microsoft.com)

31 May 2026

CVE-2026-33671 Picomatch has a ReDoS vulnerability via extglob quantifiers (msrc.microsoft.com)

31 May 2026

CVE-2026-21711 A flaw in Node.js Permission Model network enforcement leaves Unix Domain Socket (UDS) server operations without the required permission…

31 May 2026

CVE-2026-42012 Gnutls: gnutls: certificate validation bypass due to improper handling of uri and srv sans (msrc.microsoft.com)

31 May 2026

CVE-2026-5260 Gnutls: gnutls: information disclosure via heap overread in rsa key exchange (msrc.microsoft.com)

31 May 2026

CVE-2026-42015 Gnutls: gnutls: memory corruption due to off-by-one error in pkcs#12 bag handling (msrc.microsoft.com)

31 May 2026

CVE-2026-42013 Gnutls: gnutls: certificate validation bypass due to oversized subject alternative name (msrc.microsoft.com)

31 May 2026

CVE-2025-15649 IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaught exception when parsing zip header with malformed DOS date (msrc.microsoft.com)

31 May 2026

CVE-2026-48864 Libsolv: heap buffer overflow in libsolv repopagestore via unchecked decompression of malicious .solv page data (msrc.microsoft.com)

31 May 2026

CVE-2026-46242 eventpoll: fix ep_remove struct eventpoll / struct file UAF (msrc.microsoft.com)

31 May 2026

CVE-2026-40034 gitoxide - Command Injection via Partial .gitmodules Override in gix-submodule (msrc.microsoft.com)

31 May 2026

CVE-2026-40528 OpenSC < 0.27.0 Buffer Overrun in do_key_value() via profile.c (msrc.microsoft.com)

31 May 2026

CVE-2026-7374 Kubevirt: kubevirt virt-handler: privilege escalation and node compromise via symlink following vulnerability (msrc.microsoft.com)

31 May 2026

CVE-2026-9804 Kubevirt: kubevirt: vmexport directory symlink escape enables exporter pod file read (msrc.microsoft.com)

31 May 2026

CVE-2026-42250 Off-by-One Leading to Out-of-Bounds Write in bzip2 (msrc.microsoft.com)

31 May 2026

CVE-2026-48962 IO::Compress versions before 2.220 for Perl can execute arbitrary code in File::GlobMapper via an attacker-controlled output glob (msrc.microsoft.com)

31 May 2026

CVE-2026-42789 Non-CA certificate accepted as intermediate issuer in public_key path validation (msrc.microsoft.com)

31 May 2026

CVE-2026-44839 RabbitMQ: Unsanitized vhost names allow for XSS in management UI (msrc.microsoft.com)

31 May 2026

CVE-2026-42790 nameConstraints DNS bypass via subject CommonName fallback in public_key hostname verification (msrc.microsoft.com)

31 May 2026

CVE-2026-40510 OpenSC < 0.27.0-rc1 Stack Buffer Overflow via piv_process_history() in card-piv.c (msrc.microsoft.com)

31 May 2026

Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks (www.bleepingcomputer.com)

30 May 2026

CVE-2026-46179 ASoC: SOF: Don't allow pointer operations on unconfigured streams (msrc.microsoft.com)

30 May 2026

CVE-2026-46177 ipmi: Add limits to event and receive message requests (msrc.microsoft.com)

30 May 2026

CVE-2026-46107 dm-thin: fix metadata refcount underflow (msrc.microsoft.com)

30 May 2026

CVE-2026-46234 vsock: fix buffer size clamping order (msrc.microsoft.com)

30 May 2026

CVE-2026-46220 drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (msrc.microsoft.com)

30 May 2026

CVE-2026-46229 drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (msrc.microsoft.com)

30 May 2026

CVE-2026-46235 media: saa7164: add ioremap return checks and cleanups (msrc.microsoft.com)

30 May 2026

CVE-2026-46161 md/raid10: fix divide-by-zero in setup_geo() with zero far_copies (msrc.microsoft.com)

30 May 2026

CVE-2026-46185 smb/client: fix out-of-bounds read in symlink_data() (msrc.microsoft.com)

30 May 2026

CVE-2026-46191 fbcon: Avoid OOB font access if console rotation fails (msrc.microsoft.com)

30 May 2026

CVE-2026-46180 wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task (msrc.microsoft.com)

30 May 2026

CVE-2026-46160 btrfs: fix missing last_unlink_trans update when removing a directory (msrc.microsoft.com)

30 May 2026

CVE-2026-46173 exit: prevent preemption of oopsing TASK_DEAD task (msrc.microsoft.com)

30 May 2026

CVE-2026-46128 ipmi: Check event message buffer response for bad data (msrc.microsoft.com)

30 May 2026

CVE-2026-46116 xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (msrc.microsoft.com)

30 May 2026

CVE-2026-46236 media: rc: xbox_remote: heed DMA restrictions (msrc.microsoft.com)

30 May 2026

CVE-2026-46212 batman-adv: bla: prevent use-after-free when deleting claims (msrc.microsoft.com)

30 May 2026

CVE-2026-46196 tracepoint: balance regfunc() on func_add() failure in tracepoint_add_func() (msrc.microsoft.com)

30 May 2026

CVE-2026-46232 HID: playstation: Clamp num_touch_reports (msrc.microsoft.com)

30 May 2026

CVE-2026-46149 scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show() (msrc.microsoft.com)

30 May 2026

Imperva Customers Protected Against CVE-2026-45247 in Mirasvit Full Page Cache Warmer for Magento (securityboulevard.com)

30 May 2026

Palo Alto Networks PAN-OS Authentication Vulnerability Bypass Exploited in the Wild (cybersecuritynews.com)

29 May 2026

Microsoft and security researcher’s dueling posts about cybersecurity disclosures get nasty (www.csoonline.com)

29 May 2026

CVE-Bench: testing LLM agents on real-world vulnerability patches (giovannigatti.github.io)

29 May 2026

CISA adds Daemon Tools, TanStack, and Nx Console compromised versions to KEV catalog (www.scworld.com)

29 May 2026

CVE-2026-26168 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (msrc.microsoft.com)

29 May 2026

Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit (thehackernews.com)

29 May 2026

Attackers Abuse Trusted Developer Tooling to Exfiltrate Source Code and Secrets (cybersecuritynews.com)

29 May 2026

CVE-2026-24293 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability (msrc.microsoft.com)

29 May 2026

New infostealer reaches enterprise devices through FortiClient EMS vulnerability (www.helpnetsecurity.com)

29 May 2026

Microsoft Calls the Zero-Day Dumps Irresponsible. The Researcher Says Microsoft Started It. (securityaffairs.com)

29 May 2026

Notepad++ vulnerabilities could enable arbitrary code execution on Windows systems (www.csoonline.com)

29 May 2026

What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant (securelist.com)

29 May 2026

CVE-2026-45991 udf: fix partition descriptor append bookkeeping (msrc.microsoft.com)

29 May 2026

CVE-2026-46054 selinux: fix overlayfs mmap() and mprotect() access checks (msrc.microsoft.com)

29 May 2026

CVE-2026-45840 openvswitch: cap upcall PID array size and pre-size vport replies (msrc.microsoft.com)

29 May 2026

CVE-2026-45989 of: unittest: fix use-after-free in testdrv_probe() (msrc.microsoft.com)

29 May 2026

CVE-2026-45894 iommu/vt-d: Clear Present bit before tearing down PASID entry (msrc.microsoft.com)

29 May 2026

CVE-2026-46080 ocfs2: split transactions in dio completion to avoid credit exhaustion (msrc.microsoft.com)

29 May 2026

CVE-2026-46004 ALSA: caiaq: Handle probe errors properly (msrc.microsoft.com)

29 May 2026

CVE-2026-46084 RDMA/mana_ib: Disable RX steering on RSS QP destroy (msrc.microsoft.com)

29 May 2026

CVE-2026-46053 net: rds: fix MR cleanup on copy error (msrc.microsoft.com)

29 May 2026

CVE-2026-45835 Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (msrc.microsoft.com)

29 May 2026

CVE-2026-45932 bpf: Fix tcx/netkit detach permissions when prog fd isn't given (msrc.microsoft.com)

29 May 2026

CVE-2026-46062 ntfs3: fix integer overflow in run_unpack() volume boundary check (msrc.microsoft.com)

29 May 2026

CVE-2026-45834 Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (msrc.microsoft.com)

29 May 2026

CVE-2026-45930 net: mctp: ensure our nlmsg responses are initialised (msrc.microsoft.com)

29 May 2026

CVE-2026-46021 thermal: core: Fix thermal zone governor cleanup issues (msrc.microsoft.com)

29 May 2026

Google Patches 151 Vulnerabilities in Chrome, Including 22 Critical Ones (cybersecuritynews.com)

29 May 2026

Critical Samba Vulnerability Enables Remote Code Execution Attacks (cybersecuritynews.com)

29 May 2026

Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops (www.theregister.com)

28 May 2026

Hackers Use LLM Agent to Move From Marimo RCE to Internal Database in Four Pivots (cybersecuritynews.com)

28 May 2026

Hackers exploit FortiClient EMS flaw to push infostealer malware (www.bleepingcomputer.com)

28 May 2026

CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks (securityaffairs.com)

28 May 2026

Critical OpenVPN Connect for macOS Vulnerability Let Attackers Execute Arbitrary Commands (cybersecuritynews.com)

28 May 2026

U.S. CISA adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

28 May 2026

GlassWorm falls, but the repo problem is far from solved (www.csoonline.com)

28 May 2026

Gitea Container Vulnerability Exposes Private Container Images to Attackers (cybersecuritynews.com)

28 May 2026

Your Windows PC has a security deadline in June 2026 (www.malwarebytes.com)

28 May 2026

U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

28 May 2026

Microsoft Warns Public Release of Zero-Day Details Before Vendor Coordination (cybersecuritynews.com)

28 May 2026

Veeam Backup & Replication Tool Vulnerability Enables Privilege Escalation Attacks (cybersecuritynews.com)

28 May 2026

Critical Notepad++ Vulnerabilities Allow Attackers to Execute Arbitrary Code (cybersecuritynews.com)

28 May 2026

CVE-2025-71305 drm/display/dp_mst: Add protection against 0 vcpi (msrc.microsoft.com)

28 May 2026

CVE-2026-46000 rxrpc: Fix conn-level packet handling to unshare RESPONSE packets (msrc.microsoft.com)

28 May 2026

CVE-2026-46016 remoteproc: xlnx: Only access buffer information if IPI is buffered (msrc.microsoft.com)

28 May 2026

CVE-2026-46102 net: strparser: fix skb_head leak in strp_abort_strp() (msrc.microsoft.com)

28 May 2026

CVE-2026-45993 LoongArch: Add spectre boundry for syscall dispatch table (msrc.microsoft.com)

28 May 2026

CVE-2026-46022 misc: ibmasm: fix OOB MMIO read in ibmasm_handle_mouse_interrupt() (msrc.microsoft.com)

28 May 2026

CVE-2026-46082 KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 (msrc.microsoft.com)

28 May 2026

CVE-2026-45892 ext4: drop extent cache after doing PARTIAL_VALID1 zeroout (msrc.microsoft.com)

28 May 2026

CVE-2026-45844 netfilter: arp_tables: fix IEEE1394 ARP payload parsing (msrc.microsoft.com)

28 May 2026

CVE-2026-46023 dm mirror: fix integer overflow in create_dirty_log() (msrc.microsoft.com)

28 May 2026

CVE-2026-46003 net: qrtr: ns: Limit the total number of nodes (msrc.microsoft.com)

28 May 2026

CVE-2026-46094 ext4: fix bounds check in check_xattrs() to prevent out-of-bounds access (msrc.microsoft.com)

28 May 2026

CVE-2026-46006 drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (msrc.microsoft.com)

28 May 2026

CVE-2026-45963 ASoC: nau8821: Cancel delayed work on component remove (msrc.microsoft.com)

28 May 2026

CVE-2026-46076 KVM: nSVM: Raise #UD if unhandled VMMCALL isn't intercepted by L1 (msrc.microsoft.com)

28 May 2026

CVE-2026-46090 ALSA: aloop: Fix peer runtime UAF during format-change stop (msrc.microsoft.com)

28 May 2026

CVE-2026-46026 net: qrtr: ns: Limit the maximum number of lookups (msrc.microsoft.com)

28 May 2026

FortiClient Code Execution Vulnerability Exploited to Deploy EKZ Malware (cybersecuritynews.com)

27 May 2026

Beyond the Patch: Understanding the SonicWall SSL-VPN MFA Bypass Exposure (medium.com)

27 May 2026

High-severity Starlette vulnerability 'BadHost' could expose sensitive data (www.scworld.com)

27 May 2026

Inside the customer environment: Where threat actors, vulnerabilities, and exposed assets intersect (securityboulevard.com)

27 May 2026

Attackers Can Exploit BadHost to Access Sensitive AI Agent Server Endpoints (cybersecuritynews.com)

27 May 2026

CISA Warns of LiteSpeed cPanel Plugin Vulnerability Exploited in Attacks (cybersecuritynews.com)

27 May 2026

FastAPI-based AI tools exposed to authentication bypass by flaw in Starlette framework (www.csoonline.com)

27 May 2026

Windows Kernel Vulnerability Allows Attackers to Modify Kernel Memory Counters (cybersecuritynews.com)

27 May 2026

Gitea Vulnerability Exposes Private Container Images without Authentication (thehackernews.com)

27 May 2026

How to guarantee a speaker gig: Hack the system. Literally (www.theregister.com)

27 May 2026

NGINX Under Active Attack: CVE-2026-42945 and CVE-2026-9256 Put Your Infrastructure at Risk (securityboulevard.com)

27 May 2026

The NSA, ‘Mythos’ and the quiet emergence of AI cyber doctrine (www.csoonline.com)

27 May 2026

CVE-2026-40226 In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config…

27 May 2026

New 0-Click WhatsApp Account Takeover Attack Targeting iOS 16 Users (cybersecuritynews.com)

27 May 2026

Microsoft SharePoint Has a New RCE Flaw. If You Haven’t Patched Yet, Go Do That. (securityaffairs.com)

27 May 2026

BadHost – CVE-2026-48710: Starlette Host-Header Auth Bypass (badhost.org)

27 May 2026

CVE-2026-39832 Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent (msrc.microsoft.com)

27 May 2026

CVE-2026-5222 Cargo can be coerced to share credentials between registries (msrc.microsoft.com)

27 May 2026

CVE-2026-8466 Unbounded buffer accumulation in multipart header parsing causes denial of service in cowboy (msrc.microsoft.com)

27 May 2026

CVE-2026-5223 Crates in third party registries can override the cached source of other crates (msrc.microsoft.com)

27 May 2026

CVE-2026-9256 NGINX ngx_http_rewrite_module vulnerability (msrc.microsoft.com)

27 May 2026

CVE-2026-6402 webpack-dev-server vulnerable to cross-origin source code exposure on non-HTTPS origins (msrc.microsoft.com)

27 May 2026

CVE-2026-9150 Libsolv: stack-based buffer overflow in libsolv's debian metadata parser when handling sha384/sha512 checksums (msrc.microsoft.com)

27 May 2026

CVE-2026-9149 Libsolv: heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (msrc.microsoft.com)

27 May 2026

CVE-2026-42508 Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts (msrc.microsoft.com)

27 May 2026

CVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (msrc.microsoft.com)

27 May 2026

CVE-2026-46595 Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh (msrc.microsoft.com)

27 May 2026

CVE-2026-39834 Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (msrc.microsoft.com)

27 May 2026

CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (msrc.microsoft.com)

27 May 2026

CVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (msrc.microsoft.com)

27 May 2026

GitLab Suspends Windows Exploit Researcher Nightmare-Eclipse After GitHub Ban (cybersecuritynews.com)

26 May 2026

BIND 9 Software Vulnerabilities Exposes Resolvers and Authoritative Servers to Remote Exploits (cybersecuritynews.com)

26 May 2026

CVE-2026-45659 Microsoft SharePoint Remote Code Execution Vulnerability (msrc.microsoft.com)

26 May 2026

Drupal bug added to CISA list of known exploited vulnerabilities (www.scworld.com)

26 May 2026

Critical vulnerability in Universal Robots' PolyScope OS allows remote command execution (www.scworld.com)

26 May 2026

Zero-day vulnerability in Japanese LMS exploited to deploy Cobalt Strike (www.scworld.com)

26 May 2026

Zero-click attack hijacks WhatsApp accounts on iOS 16 (www.scworld.com)

26 May 2026

Ghost CMS vulnerability exploited in large-scale campaign (www.scworld.com)

26 May 2026

CVE-2026-41091 Microsoft Defender Elevation of Privilege Vulnerability (msrc.microsoft.com)

26 May 2026

CVE-2026-45584 Microsoft Defender Remote Code Execution Vulnerability (msrc.microsoft.com)

26 May 2026

CVE-2026-45498 Microsoft Defender Denial of Service Vulnerability (msrc.microsoft.com)

26 May 2026

CVE-2026-45495 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability (msrc.microsoft.com)

26 May 2026

Actively exploited Trend Micro Apex One flaw gets CISA warning (CVE-2026-34926) (www.helpnetsecurity.com)

26 May 2026

Microsoft SharePoint Server Vulnerability Enables Remote Code Execution Attacks (cybersecuritynews.com)

26 May 2026

Hackers Exploit Ghost CMS CVE-2026-26980 to Poison 700 Websites With ClickFix Malware (cybersecuritynews.com)

26 May 2026

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions (thehackernews.com)

26 May 2026

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659) (www.helpnetsecurity.com)

26 May 2026

State Sponsored Activity

This chart provides an indication of state sponsored activity suspected or known to be actively targetting vulnerabilities recently.

Government Alerts & Advisories

Prev Next

CISA Adds One Known Exploited Vulnerability to Catalog (www.cisa.gov)

01 Jun 2026

Oracle security advisory – July 2024 quarterly rollup (AV24-401) - Update 1 (cyber.gc.ca)

01 Jun 2026

CISA Adds One Known Exploited Vulnerability to Catalog (www.cisa.gov)

01 Jun 2026

Ivanti security advisory (AV26-533) (cyber.gc.ca)

01 Jun 2026

Plesk security advisory (AV26-534) (cyber.gc.ca)

01 Jun 2026

Mozilla security advisory (AV26-532) (cyber.gc.ca)

01 Jun 2026

Red Hat security advisory (AV26-531) (cyber.gc.ca)

01 Jun 2026

[Control systems] CISA ICS security advisories (AV26–530) (cyber.gc.ca)

01 Jun 2026

Ubuntu security advisory (AV26-529) (cyber.gc.ca)

01 Jun 2026

Dell security advisory (AV26-528) (cyber.gc.ca)

01 Jun 2026

IBM security advisory (AV26-527) (cyber.gc.ca)

01 Jun 2026

CISA Adds One Known Exploited Vulnerability to Catalog (www.cisa.gov)

29 May 2026

AL26-013 Security incident impacting GitHub internal repositories (cyber.gc.ca)

29 May 2026

Oracle security advisory (AV26-526) (cyber.gc.ca)

29 May 2026

Microsoft Edge security advisory (AV26-525) (cyber.gc.ca)

29 May 2026

Supply Chain Compromises Impact Nx Console and GitHub Repositories (www.cisa.gov)

28 May 2026

Mitel security advisory (AV26-524) (cyber.gc.ca)

28 May 2026

Tanium security advisory (AV26-523) (cyber.gc.ca)

28 May 2026

Erlang security advisory (AV26-522) (cyber.gc.ca)

28 May 2026

Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter (www.cisa.gov)

28 May 2026

MacGregor Voyage Data Recorder (VDR) G4e (www.cisa.gov)

28 May 2026

XCharge C6 (www.cisa.gov)

28 May 2026

KMW CCTV Security Cameras (www.cisa.gov)

28 May 2026

CP Plus 8 Ch. Network Video Recorder (www.cisa.gov)

28 May 2026

ABB Busch-Welcome 2 Wire Door Opener Actuator (www.cisa.gov)

28 May 2026

Notepad++ security advisory (AV26-521) (cyber.gc.ca)

28 May 2026

Zimbra security advisory (AV26-520) (cyber.gc.ca)

28 May 2026

Veeam security advisory (AV26-519) (cyber.gc.ca)

28 May 2026

Drupal security advisory (AV26-518) (cyber.gc.ca)

28 May 2026

Google Chrome security advisory (AV26-517) (cyber.gc.ca)

27 May 2026

Jenkins security advisory (AV26-515) (cyber.gc.ca)

27 May 2026

GitLab security advisory (AV26-516) (cyber.gc.ca)

27 May 2026

CISA Adds Three Known Exploited Vulnerabilities to Catalog (www.cisa.gov)

27 May 2026

[Control Systems] Phoenix Contact Security Advisory (AV26-514) (cyber.gc.ca)

27 May 2026

Veeam security advisory (AV26-513) (cyber.gc.ca)

27 May 2026

GitHub security advisory (AV26-512) (cyber.gc.ca)

27 May 2026

Hitachi security advisory (AV26-511) (cyber.gc.ca)

27 May 2026

CISA Adds One Known Exploited Vulnerability to Catalog (www.cisa.gov)

26 May 2026

Eppendorf BioFlo 320 (www.cisa.gov)

26 May 2026

[Control systems] ABB security advisory (AV26-510) (cyber.gc.ca)

26 May 2026

[Control Systems] Moxa security advisory (AV26-509) (cyber.gc.ca)

26 May 2026

cPanel security advisory (AV26-508) (cyber.gc.ca)

25 May 2026

Red Hat security advisory (AV26-507) (cyber.gc.ca)

25 May 2026

[Control systems] CISA ICS security advisories (AV26–506) (cyber.gc.ca)

25 May 2026

Ubuntu security advisory (AV26-505) (cyber.gc.ca)

25 May 2026

Dell security advisory (AV26-504) (cyber.gc.ca)

25 May 2026

Bulletin de sécurité IBM (AV26-502) (cyber.gc.ca)

25 May 2026

IBM security advisory (AV26-502) (cyber.gc.ca)

25 May 2026

Roundcube security advisory (AV26-503) (cyber.gc.ca)

25 May 2026

CISA Adds One Known Exploited Vulnerability to Catalog (www.cisa.gov)

22 May 2026

F5 security advisory (AV26-501) (cyber.gc.ca)

22 May 2026

HPE security advisory (AV26-500) (cyber.gc.ca)

22 May 2026

cPanel security advisory (AV26-499) (cyber.gc.ca)

22 May 2026

Ubiquiti security advisory (AV26-498) (cyber.gc.ca)

22 May 2026

Microsoft Edge security advisory (AV26-497) (cyber.gc.ca)

22 May 2026

CISA Adds Two Known Exploited Vulnerabilities to Catalog (www.cisa.gov)

21 May 2026

ConnectWise security advisory (AV26-496) (cyber.gc.ca)

21 May 2026

Hitachi Energy GMS600 (www.cisa.gov)

21 May 2026

FreeBSD security advisory (AV26-495) (cyber.gc.ca)

21 May 2026

Trend Micro security advisory (AV26-494) (cyber.gc.ca)

21 May 2026

Security Alert: Alert Regarding Multiple Vulnerabilities in Trend Micro Products Including TrendAI Apex One (www.jpcert.or.jp)

21 May 2026

Splunk security advisory (AV26-493) (cyber.gc.ca)

20 May 2026

Drupal security advisory (AV26-492) (cyber.gc.ca)

20 May 2026

Cisco security advisory (AV26-491) (cyber.gc.ca)

20 May 2026

ISC BIND security advisory (AV26-490) (cyber.gc.ca)

20 May 2026

Microsoft security advisory (AV26-489) (cyber.gc.ca)

20 May 2026

CISA Adds Seven Known Exploited Vulnerabilities to Catalog (www.cisa.gov)

20 May 2026

cPanel security advisory (AV26-488) (cyber.gc.ca)

20 May 2026

HPE security advisory (AV26-487) (cyber.gc.ca)

20 May 2026

Google Chrome security advisory (AV26-486) (cyber.gc.ca)

20 May 2026

F5 security advisory (AV26-485) (cyber.gc.ca)

20 May 2026

FreePBX security advisory (AV26-484) (cyber.gc.ca)

20 May 2026

Atlassian security advisory (AV26-483) (cyber.gc.ca)

19 May 2026

Ubuntu security advisory (AV26-482) (cyber.gc.ca)

19 May 2026

Red Hat security advisory (AV26-481) (cyber.gc.ca)

19 May 2026

Dell security advisory (AV26-480) (cyber.gc.ca)

19 May 2026

IBM security advisory (AV26-479) (cyber.gc.ca)

19 May 2026

Mozilla security advisory (AV26-478) (cyber.gc.ca)

19 May 2026

AL26-013 - Critical vulnerability affecting Cisco Catalyst SD-WAN - CVE-2026-20182 (cyber.gc.ca)

19 May 2026

HPE security advisory (AV26-477) (cyber.gc.ca)

19 May 2026

ZKTeco CCTV Cameras (www.cisa.gov)

19 May 2026

ScadaBR (www.cisa.gov)

19 May 2026

Siemens RUGGEDCOM APE1808 Devices (www.cisa.gov)

19 May 2026

Microsoft Edge security advisory (AV26-476) (cyber.gc.ca)

19 May 2026

[Control systems] CISA ICS security advisories (AV26–475) (cyber.gc.ca)

19 May 2026

FreePBX security advisory (AV26–474) (cyber.gc.ca)

15 May 2026

CISA Adds One Known Exploited Vulnerability to Catalog (www.cisa.gov)

15 May 2026

AL26-012 - Critical vulnerability affecting Cisco Catalyst SD-WAN - CVE-2026-20182 (cyber.gc.ca)

15 May 2026

Microsoft security advisory (AV26-473) (cyber.gc.ca)

15 May 2026

Tenable security advisory (AV26-472) (cyber.gc.ca)

14 May 2026

CISA Alerts & KEV Catalog Updates

CISA KEVs (known exploited vulnerabilities) identified as a priroty to mitigate over the past three months.

View Catalog & Updates

Actively Exploited Vulnerabilities

Prev Next

Critical Netlogon flaw is under active exploitation. (thecyberwire.com)

01 Jun 2026

Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit (www.darkreading.com)

01 Jun 2026

Windows Netlogon RCE exploited, domain controllers at risk (CVE-2026-41089) (www.helpnetsecurity.com)

01 Jun 2026

Critical Windows Netlogon RCE flaw now exploited in attacks (www.bleepingcomputer.com)

01 Jun 2026

Palo Alto VPN bug graduates from advisory to active exploitation (www.theregister.com)

01 Jun 2026

Recent Palo Alto Networks Vulnerability Exploited for Weeks (www.securityweek.com)

01 Jun 2026

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts (thehackernews.com)

01 Jun 2026

U.S. CISA adds Palo Alto Networks PAN-OS flaw to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

01 Jun 2026

Windows Netlogon 0-Click RCE Vulnerability Now Actively Exploited In The Wild (cybersecuritynews.com)

31 May 2026

WP Maps Pro bug exploited to create admin accounts on WordPress sites (www.bleepingcomputer.com)

31 May 2026

Week in review: Infostealer dropped via FortiClient EMS flaw, exploited Trend Micro Apex One flaw (www.helpnetsecurity.com)

31 May 2026

Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks (www.bleepingcomputer.com)

30 May 2026

Palo Alto Networks PAN-OS Authentication Vulnerability Bypass Exploited in the Wild (cybersecuritynews.com)

29 May 2026

CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks (securityaffairs.com)

28 May 2026

U.S. CISA adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

28 May 2026

Indian CERT urges firms to contain exploited internet-facing flaws within 12 hours (www.csoonline.com)

28 May 2026

Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks (www.securityweek.com)

28 May 2026

Qevlar’s new AI agents correlate CVEs, incident data, and active exploitation signals (www.helpnetsecurity.com)

28 May 2026

U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

28 May 2026

FortiClient Code Execution Vulnerability Exploited to Deploy EKZ Malware (cybersecuritynews.com)

27 May 2026

CISA adds LiteSpeed cPanel plugin bug to exploited vulnerabilities list (www.scworld.com)

27 May 2026

CISA Warns of LiteSpeed cPanel Plugin Vulnerability Exploited in Attacks (cybersecuritynews.com)

27 May 2026

India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat (www.theregister.com)

27 May 2026

CISA gives feds 4 days to patch actively exploited cPanel plugin flaw (www.bleepingcomputer.com)

27 May 2026

Drupal bug added to CISA list of known exploited vulnerabilities (www.scworld.com)

26 May 2026

KnowledgeDeliver flaw exploited as a zero-day to install web shells (www.bleepingcomputer.com)

26 May 2026

Zero-day vulnerability in Japanese LMS exploited to deploy Cobalt Strike (www.scworld.com)

26 May 2026

Ghost CMS vulnerability exploited in large-scale campaign (www.scworld.com)

26 May 2026

Actively exploited Trend Micro Apex One flaw gets CISA warning (CVE-2026-34926) (www.helpnetsecurity.com)

26 May 2026

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment (www.securityweek.com)

26 May 2026

CISA orders feds to patch actively exploited Drupal vulnerability (www.bleepingcomputer.com)

26 May 2026

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike (thehackernews.com)

26 May 2026

KnowledgeDeliver LMS Zero-Day Exploited to Deploy BLUEBEAM Web Shell (cybersecuritynews.com)

25 May 2026

Ghost CMS Vulnerability Exploited to Hack Over 700 Websites (www.securityweek.com)

25 May 2026

Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks (thehackernews.com)

25 May 2026

CISA Warns of Drupal Core SQL Injection Vulnerability Exploited in Attacks (cybersecuritynews.com)

25 May 2026

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign (www.bleepingcomputer.com)

24 May 2026

U.S. CISA adds a flaw in Drupal Core to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

24 May 2026

Week in review: GitHub breached via poisoned VS Code extension, critical NGINX flaw exploited (www.helpnetsecurity.com)

24 May 2026

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV (thehackernews.com)

23 May 2026

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root (thehackernews.com)

23 May 2026

LiteSpeed cPanel Plugin 0-Day Exploited in the wild to Gain Server Root Access (cybersecuritynews.com)

22 May 2026

CISA adds Langflow Origin Validation Flaw to Known Exploited Vulnerabilities Catalog (cybersecuritynews.com)

22 May 2026

CISA Warns of Microsoft Defender 0-Day Vulnerabilities Exploited in Attacks (cybersecuritynews.com)

22 May 2026

Trend Micro warns of Apex One zero-day exploited in the wild (www.bleepingcomputer.com)

22 May 2026

U.S. CISA adds Trend Micro Apex One and Langflow to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

22 May 2026

CISA Warns of Trend Micro Apex One Vulnerability Exploited in Attacks (cybersecuritynews.com)

22 May 2026

TrendAI Patches Apex One Zero-Day Exploited in the Wild (www.securityweek.com)

22 May 2026

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV (thehackernews.com)

22 May 2026

U.S. CISA adds Microsoft and Adobe flaws to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

21 May 2026

Microsoft Defender vulnerabilities are being exploited in the wild (securityboulevard.com)

21 May 2026

Microsoft Defender vulnerabilities are being exploited in the wild (www.malwarebytes.com)

21 May 2026

Microsoft patches two actively exploited Defender vulnerabilities. (thecyberwire.com)

21 May 2026

Microsoft Warns of Two Actively Exploited Defender Vulnerabilities (thehackernews.com)

21 May 2026

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) (www.helpnetsecurity.com)

21 May 2026

New Microsoft Defender 0‑Days Actively Exploited in the Wild (cybersecuritynews.com)

21 May 2026

Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days (www.securityweek.com)

21 May 2026

Microsoft warns of new Defender zero-days exploited in attacks (www.bleepingcomputer.com)

21 May 2026

Critical bug in F5 NGINX actively exploited (www.scworld.com)

18 May 2026

Microsoft Exchange Zero-Day Under Attack, No Patch Available (www.darkreading.com)

18 May 2026

Hackers Actively Exploiting Critical NGINX RCE Vulnerability in the Wild (cybersecuritynews.com)

18 May 2026

CISA Warns of Microsoft Exchange Server Vulnerability Exploited in Attacks (cybersecuritynews.com)

18 May 2026

Experts warn of active exploitation of critical NGINX flaw CVE-2026-42945 (securityaffairs.com)

18 May 2026

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE (thehackernews.com)

17 May 2026

Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploited (www.helpnetsecurity.com)

17 May 2026

U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

16 May 2026

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming (thehackernews.com)

16 May 2026

Microsoft Exchange, Windows 11, and Cursor Zero-Days Exploited on Pwn2Own Day 2 (cybersecuritynews.com)

16 May 2026

Microsoft warns of active exploitation of new Exchange Server zero-day vulnerability (www.scworld.com)

15 May 2026

WordPress Funnel Builder vulnerability exploited to steal payment data (www.scworld.com)

15 May 2026

Funnel Builder WordPress plugin bug exploited to steal credit cards (www.bleepingcomputer.com)

15 May 2026

CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day (securityaffairs.com)

15 May 2026

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) (www.helpnetsecurity.com)

15 May 2026

Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild (www.securityweek.com)

15 May 2026

Cisco warns of an actively exploited SD-WAN flaw with max severity (www.csoonline.com)

15 May 2026

From Active Exploitation to Cloud-Native Intrusions: Threat Actors Intensify (medium.com)

15 May 2026

PraisonAI Vulnerability Exploited Within Hours of Public Disclosure (cybersecuritynews.com)

15 May 2026

Unpatched Microsoft Exchange Server vulnerability exploited (CVE-2026-42897) (www.helpnetsecurity.com)

15 May 2026

Microsoft warns of Exchange zero-day flaw exploited in attacks (www.bleepingcomputer.com)

15 May 2026

Critical Microsoft Exchange Server Vulnerability Actively Exploited in Attacks (cybersecuritynews.com)

15 May 2026

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email (thehackernews.com)

15 May 2026

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 (www.securityweek.com)

15 May 2026

Cisco Catalyst SD-WAN Controller 0-Day Actively Exploited to Gain Admin Access (cybersecuritynews.com)

14 May 2026

Maximum Severity Cisco SD-WAN Bug Exploited in the Wild (www.darkreading.com)

14 May 2026

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks (www.bleepingcomputer.com)

14 May 2026

U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

14 May 2026

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access (thehackernews.com)

14 May 2026

Critical Quest KACE SMA flaw exploited after 10 months (www.scworld.com)

14 May 2026

Palo Alto PAN-OS 0-Day Exploited to Execute Arbitrary Code With Root Privileges on Firewalls (cybersecuritynews.com)

14 May 2026

Langflow CVE-2026-33017 Exploited to Steal AWS Keys and Deploy NATS Worker (cybersecuritynews.com)

14 May 2026

Google reports first known AI-assisted zero-day exploit in the wild (www.scworld.com)

12 May 2026

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor (thehackernews.com)

11 May 2026

U.S. CISA adds a flaw in BerriAI LiteLLM to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

11 May 2026

New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks (www.securityweek.com)

11 May 2026

Week in review: cPanel vulnerability actively exploited, DigiCert breach, LinkedIn job scams (www.helpnetsecurity.com)

10 May 2026

Five new holes, one exploited, found in Ivanti Endpoint Manager Mobile (www.csoonline.com)

08 May 2026

From Active Exploitation to State-Aligned Espionage: Threat Actors Intensify Operations Against… (medium.com)

08 May 2026

CISA gives feds four days to patch Ivanti flaw exploited as zero-day (www.bleepingcomputer.com)

08 May 2026

Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild (securityaffairs.com)

08 May 2026

Ivanti EPMM vulnerability exploited in zero-day attacks (CVE-2026-6973) (www.helpnetsecurity.com)

08 May 2026

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks (www.securityweek.com)

08 May 2026

Palo Alto Networks firewall flaw has been exploited for several weeks (www.csoonline.com)

07 May 2026

Palo Alto Networks says patch for exploited PAN-OS firewall bug forthcoming (www.scworld.com)

07 May 2026

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access (thehackernews.com)

07 May 2026

U.S. CISA adds a flaw in Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

07 May 2026

New Ivanti EPMM 0-Day Vulnerability Actively Exploited in Attacks (cybersecuritynews.com)

07 May 2026

CISA Warns of Palo Alto PAN-OS Vulnerability Exploited to Gain Root Access (cybersecuritynews.com)

07 May 2026

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking (www.securityweek.com)

07 May 2026

Ivanti warns of new EPMM flaw exploited in zero-day attacks (www.bleepingcomputer.com)

07 May 2026

Palo Alto Networks Firewall Zero-Day RCE Vulnerability Exploited in the Wild Since April (cybersecuritynews.com)

07 May 2026

Palo Alto Networks firewall zero-day exploited for nearly a month (www.bleepingcomputer.com)

07 May 2026

U.S. CISA adds a flaw in Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities catalog (securityaffairs.com)

07 May 2026

MetInfo CMS vulnerability exploited by threat actors (www.scworld.com)

06 May 2026

Palo Alto Networks warns of critical PAN-OS vulnerability exploited in the wild (www.scworld.com)

06 May 2026

Root-level RCE vulnerability in Palo Alto firewalls exploited (CVE-2026-0300) (www.helpnetsecurity.com)

06 May 2026

ShinyHunters claims dump puts 119K Vimeo emails in the wild (www.theregister.com)

06 May 2026

Palo Alto Networks PAN-OS flaw exploited for remote code execution (securityaffairs.com)

06 May 2026

Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution (thehackernews.com)

06 May 2026

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls (www.securityweek.com)

05 May 2026

Critical Palo Alto Firewalls Vulnerability Exploited in the Wild to Gain Root Access (cybersecuritynews.com)

05 May 2026

Trending Adversarial Group(s)

Top 10 Adverserial groups suspected or known to be actively targetting vulnerabilities.

Zero Day ( 0-day)

Prev Next

Gogs Zero-Day Exposes Servers to Remote Code Execution (www.securityweek.com)

29 May 2026

Microsoft Calls the Zero-Day Dumps Irresponsible. The Researcher Says Microsoft Started It. (securityaffairs.com)

29 May 2026

GitHub bans security researcher who posted zero-day Windows exploits (www.tomshardware.com)

28 May 2026

Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops (www.theregister.com)

28 May 2026

New Gogs 0-Day Vulnerability Lets Attackers Run Malicious Code on the Server Remotely (cybersecuritynews.com)

28 May 2026

New Gogs zero-day flaw lets hackers get remote code execution (www.bleepingcomputer.com)

28 May 2026

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal (thehackernews.com)

28 May 2026

Microsoft Warns Public Release of Zero-Day Details Before Vendor Coordination (cybersecuritynews.com)

28 May 2026

KnowledgeDeliver flaw exploited as a zero-day to install web shells (www.bleepingcomputer.com)

26 May 2026

Zero-day vulnerability in Japanese LMS exploited to deploy Cobalt Strike (www.scworld.com)

26 May 2026

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment (www.securityweek.com)

26 May 2026

KnowledgeDeliver LMS Zero-Day Exploited to Deploy BLUEBEAM Web Shell (cybersecuritynews.com)

25 May 2026

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos (thehackernews.com)

25 May 2026

Anthropic’s Claude Mythos Preview Uncovers 10,000+ 0-Days in Project Glasswing (cybersecuritynews.com)

22 May 2026

LiteSpeed cPanel Plugin 0-Day Exploited in the wild to Gain Server Root Access (cybersecuritynews.com)

22 May 2026

CISA Warns of Microsoft Defender 0-Day Vulnerabilities Exploited in Attacks (cybersecuritynews.com)

22 May 2026

$20 per zero-day is already the WordPress plugin reality (www.helpnetsecurity.com)

22 May 2026

Trend Micro warns of Apex One zero-day exploited in the wild (www.bleepingcomputer.com)

22 May 2026

TrendAI Patches Apex One Zero-Day Exploited in the Wild (www.securityweek.com)

22 May 2026

Microsoft patches two zero-day flaws in Defender (www.csoonline.com)

21 May 2026

ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories (thehackernews.com)

21 May 2026

Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days (www.securityweek.com)

21 May 2026

New NGINX 0-Day RCE “nginx-poolslip” Affects Millions of NGINX Servers (cybersecuritynews.com)

21 May 2026

Microsoft warns of new Defender zero-days exploited in attacks (www.bleepingcomputer.com)

21 May 2026

Huawei zero-day flaw reportedly caused Luxembourg telecom outage (www.scworld.com)

20 May 2026

Microsoft Releases Mitigation for Windows BitLocker Security Bypass 0-Day Vulnerability (cybersecuritynews.com)

20 May 2026

Microsoft shares mitigation for YellowKey Windows zero-day (www.bleepingcomputer.com)

20 May 2026

Alleged Huawei zero-day blamed for the 2025 Luxembourg telecom crash (securityaffairs.com)

20 May 2026

Windows Zero-Day Barrage Continues After Patch Tuesday (www.darkreading.com)

19 May 2026

Microsoft Exchange Zero-Day Under Attack, No Patch Available (www.darkreading.com)

18 May 2026

⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More (thehackernews.com)

18 May 2026

Zero-Day Exploit Against Windows BitLocker (www.schneier.com)

18 May 2026

Chaotic Eclipse discloses MiniPlasma zero-day, suggesting a missing or undone 2020 Windows security fix (securityaffairs.com)

18 May 2026

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems (thehackernews.com)

18 May 2026

New Windows ‘MiniPlasma’ Zero-Day Let Attackers Gain SYSTEM Access – PoC Released (cybersecuritynews.com)

18 May 2026

Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026 (www.bleepingcomputer.com)

18 May 2026

New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released (www.bleepingcomputer.com)

17 May 2026

Week in review: Cisco patches SD-WAN 0-day, unpatched Microsoft Exchange Server flaw exploited (www.helpnetsecurity.com)

17 May 2026

Microsoft Exchange, Windows 11, and Cursor Zero-Days Exploited on Pwn2Own Day 2 (cybersecuritynews.com)

16 May 2026

Microsoft warns of active exploitation of new Exchange Server zero-day vulnerability (www.scworld.com)

15 May 2026

Cisco, Canvas, Microsoft, Exchange 0-Days, NPM Backdoors, GPT-5.5 and more... - SWN #581 (www.scworld.com)

15 May 2026

Exchange Server zero-day vulnerability can be triggered by opening a malicious email (www.csoonline.com)

15 May 2026

CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day (securityaffairs.com)

15 May 2026

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182) (www.helpnetsecurity.com)

15 May 2026

Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild (www.securityweek.com)

15 May 2026

Microsoft warns of Exchange zero-day flaw exploited in attacks (www.bleepingcomputer.com)

15 May 2026

Researchers uncover YellowKey and GreenPlasma Windows Zero-Days (securityaffairs.com)

15 May 2026

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 (www.securityweek.com)

15 May 2026

Cisco Catalyst SD-WAN Controller 0-Day Actively Exploited to Gain Admin Access (cybersecuritynews.com)

14 May 2026

Google announces hackers are using AI to create zero days. (thecyberwire.com)

14 May 2026

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks (www.bleepingcomputer.com)

14 May 2026

Palo Alto PAN-OS 0-Day Exploited to Execute Arbitrary Code With Root Privileges on Firewalls (cybersecuritynews.com)

14 May 2026

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation (thehackernews.com)

14 May 2026

Researcher Drops YellowKey, GreenPlasma Windows Zero-Days (www.securityweek.com)

14 May 2026

Windows BitLocker 0-Day Vulnerability Enables Access to Encrypted Drives (cybersecuritynews.com)

13 May 2026

Windows BitLocker zero-day gives access to protected drives, PoC released (www.bleepingcomputer.com)

13 May 2026

Mystery Microsoft bug leaker keeps the zero-days coming (www.theregister.com)

13 May 2026

Patch Tuesday notes: Microsoft patches over a hundred flaws, none of which are zero-days. (thecyberwire.com)

13 May 2026

May 2026 Patch Tuesday: no zero-days but plenty to fix (securityboulevard.com)

13 May 2026

May 2026 Patch Tuesday: 137 Vulnerabilities, No Zero-Days (socradar.io)

13 May 2026

May 2026 Patch Tuesday: no zero-days but plenty to fix (www.malwarebytes.com)

13 May 2026

Google entdeckt erstmals KI-basierten Zero-Day-Exploit (www.csoonline.com)

13 May 2026

Patch Tuesday: No zero days among 137 Microsoft CVEs, 4 Word RCEs (www.scworld.com)

12 May 2026

It's Patch Tuesday for Microsoft and Not a Zero-Day In Sight (www.darkreading.com)

12 May 2026

Microsoft May 2026 Patch Tuesday: Many fixes, but no zero-days (www.helpnetsecurity.com)

12 May 2026

Microsoft May 2026 Patch Tuesday fixes 120 flaws, no zero-days (www.bleepingcomputer.com)

12 May 2026

'This is the tip of the iceberg': Google experts say they have seen hackers using AI to discover and weaponize…

12 May 2026

Google reports first known AI-assisted zero-day exploit in the wild (www.scworld.com)

12 May 2026

The Rise of AI-Driven Zero-Day Attacks (medium.com)

12 May 2026

AI-Powered Zero-Day Attack: A Turning Point for Cybersecurity (medium.com)

11 May 2026

Linux kernel maintainers suggest a ‘kill switch’ to protect systems until a zero-day vulnerability is patched (www.csoonline.com)

11 May 2026

Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation (thehackernews.com)

11 May 2026

Google Warns of Hackers Using AI to Create Working Zero-Day Exploit (cybersecuritynews.com)

11 May 2026

Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits (securityaffairs.com)

11 May 2026

Google Detects First AI-Generated Zero-Day Exploit (www.securityweek.com)

11 May 2026

Google researchers uncover criminal zero-day exploit likely built with AI (www.helpnetsecurity.com)

11 May 2026

Google: Hackers used AI to develop zero-day exploit for web admin tool (www.bleepingcomputer.com)

11 May 2026

Google discovers weaponized zero-day exploits created with AI (www.csoonline.com)

11 May 2026

Lyrie.ai Deploys Real-Time Zero-Day Tracking Across Global Enterprise Infrastructure (www.csoonline.com)

11 May 2026

Canvas, Shai-Hulud, QuasarRat, 0Days, Anthropic, Aaran Leyland, and EU Compliance! - SWN #579 (www.scworld.com)

08 May 2026

Federal agencies ordered to patch Ivanti EPMM zero-day in 3 days (www.scworld.com)

08 May 2026

'Dirty Frag' Linux zero-day exposes most distributions to LPE (www.scworld.com)

08 May 2026

CISA gives feds four days to patch Ivanti flaw exploited as zero-day (www.bleepingcomputer.com)

08 May 2026

Ivanti EPMM vulnerability exploited in zero-day attacks (CVE-2026-6973) (www.helpnetsecurity.com)

08 May 2026

Mozilla Patches 423 Firefox 0-Day Vulnerabilities with Claude Mythos and Other AI Models (cybersecuritynews.com)

08 May 2026

New Linux 'Dirty Frag' zero-day gives root on all major distros (www.bleepingcomputer.com)

08 May 2026

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks (www.securityweek.com)

08 May 2026

Nation-state actors exploit Palo Alto PAN-OS zero-day for weeks (securityaffairs.com)

07 May 2026

State-sponsored hackers likely behind zero-day attacks on Palo Alto firewalls (www.helpnetsecurity.com)

07 May 2026

New Ivanti EPMM 0-Day Vulnerability Actively Exploited in Attacks (cybersecuritynews.com)

07 May 2026

Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking (www.securityweek.com)

07 May 2026

Ivanti warns of new EPMM flaw exploited in zero-day attacks (www.bleepingcomputer.com)

07 May 2026

ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories (thehackernews.com)

07 May 2026

Palo Alto Networks Firewall Zero-Day RCE Vulnerability Exploited in the Wild Since April (cybersecuritynews.com)

07 May 2026

Palo Alto Networks firewall zero-day exploited for nearly a month (www.bleepingcomputer.com)

07 May 2026

Palo Alto Networks to Patch Zero-Day Exploited to Hack Firewalls (www.securityweek.com)

05 May 2026

Threat Actors Use AI to Automate Zero-Day Discovery and Exploitation at Machine Speed (securityboulevard.com)

04 May 2026

CISA Warns of Linux Kernel 0-Day Vulnerability Exploited in Attacks (cybersecuritynews.com)

04 May 2026

Threat Actors Use AI to Automate 0-Day Discovery and Exploitation at Machine Speed (cybersecuritynews.com)

04 May 2026

Week in review: High-severity LPE vulnerability in the Linux kernel, cPanel 0-day exploited for months (www.helpnetsecurity.com)

03 May 2026

cPanel zero-day exploited for months before patch release (CVE-2026-41940) (www.helpnetsecurity.com)

30 Apr 2026

Critical cPanel and WHM bug exploited as a zero-day, PoC now available (www.bleepingcomputer.com)

30 Apr 2026

Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months (www.securityweek.com)

30 Apr 2026

Bug of the year (so far)? Nasty cPanel vulnerability probably exploited as a 0-day (go.theregister.com)

30 Apr 2026

cPanel 0-Day Authentication Bypass Vulnerability Actively Exploited in the Wild — PoC Released (cybersecuritynews.com)

30 Apr 2026

Linux Kernel 0-Day “Copy Fail” Roots Every Major Distribution Since 2017 (cybersecuritynews.com)

29 Apr 2026

Microsoft's patch for a 0-day exploited by Russian spies fell short. Another Windows flaw is under attack (go.theregister.com)

29 Apr 2026

Claude Mythos Has Found 271 Zero-Days in Firefox (securityboulevard.com)

29 Apr 2026

Claude Mythos Has Found 271 Zero-Days in Firefox (www.schneier.com)

29 Apr 2026

CISA orders feds to patch Windows flaw exploited as zero-day (www.bleepingcomputer.com)

29 Apr 2026

ZDI-26-305: (0Day) OpenAI Codex Sandbox Escape Vulnerability (www.zerodayinitiative.com)

28 Apr 2026

Blue Origin Leak Claim, iOS Zero Day Sale, VPN and AWS Access Listings, and Ticketmaster Database Post (socradar.io)

28 Apr 2026

Litecoin Zero-Day Vulnerability Exploited in DoS Attack, Disrupts Major Mining Pools (cybersecuritynews.com)

25 Apr 2026

When Mythos Finds Thousands of Zero-Days, EU Regulators Won’t Wait for Your SOC to Catch Up (securityboulevard.com)

23 Apr 2026

Why Chrome Zero-Days Keep Winning and What Enterprises Need to Change – Blog | Menlo Security (securityboulevard.com)

23 Apr 2026

CISA orders feds to patch BlueHammer flaw exploited as zero-day (www.bleepingcomputer.com)

23 Apr 2026

Recent Microsoft Defender Vulnerability Exploited as Zero-Day (www.securityweek.com)

23 Apr 2026

Claude Mythos AI Model Uncovers 271 Zero-Day Vulnerabilities in Firefox (cybersecuritynews.com)

22 Apr 2026

Claude Mythos finds 271 Firefox flaws, Mozilla believes zero-days are numbered (www.helpnetsecurity.com)

22 Apr 2026

ZDI-26-293: (0Day) Microsoft Office URI Handler NTLM Response Information Disclosure Vulnerability (www.zerodayinitiative.com)

21 Apr 2026

FAQs

Today’s top cybersecurity headlines typically include actively exploited vulnerabilities, ransomware campaigns, major data breaches, zero-day disclosures, nation-state activity, and critical vendor security advisories. Security teams should prioritise threat alerts involving KEVs, remote code execution vulnerabilities, cloud platform attacks, and vulnerabilities affecting internet-facing systems.
By using this site, you agree to our Terms & Conditions.

COOKIE / PRIVACY POLICY: This website uses essential cookies required for basic site functionality. We also use analytics cookies to understand how the website is used. We do not use cookies for marketing or personalization, and we do not sell or share any personal data with third parties.

Terms & Privacy Policy