Back to Blog

vulnerability

80 posts
Adobe ColdFusion CVE-2026-48282 moves from patch advisory to active exploitation

Adobe ColdFusion CVE-2026-48282 moves from patch advisory to active exploitation

Adobe ColdFusion CVE-2026-48282 moves from patch advisory to active exploitation Adobe ColdFusion administrators have a narrow patch window for CVE-2026-48282,...

July 7, 2026
6 min read
CitrixBleed-style NetScaler flaw CVE-2026-8451 is already being tested in the wild

CitrixBleed-style NetScaler flaw CVE-2026-8451 is already being tested in the wild

CitrixBleed-style NetScaler flaw CVE-2026-8451 is already being tested in the wild Citrix NetScaler administrators have another edge-appliance exposure to triag...

July 4, 2026
5 min read
SharePoint CVE-2026-45659 active exploitation puts on-prem servers on urgent patch path

SharePoint CVE-2026-45659 active exploitation puts on-prem servers on urgent patch path

SharePoint CVE-2026-45659 active exploitation puts on-prem servers on urgent patch path Microsoft SharePoint Server is back in the active-exploitation lane. CIS...

July 3, 2026
8 min read
Progress Kemp LoadMaster CVE-2026-8037 exploitation moves fast after public PoC

Progress Kemp LoadMaster CVE-2026-8037 exploitation moves fast after public PoC

Progress Kemp LoadMaster CVE-2026-8037 exploitation moves fast after public PoC Progress Kemp LoadMaster appliances are now in the familiar danger zone for edge...

July 2, 2026
7 min read
SimpleHelp CVE-2026-48558 exploitation turns RMM into a credential-theft path

SimpleHelp CVE-2026-48558 exploitation turns RMM into a credential-theft path

SimpleHelp CVE-2026-48558 exploitation turns RMM into a credential-theft path SimpleHelp has moved from patched vulnerability to active intrusion path. Attacker...

July 1, 2026
9 min read
Oracle E-Business Suite CVE-2026-46817 is now an active exploitation risk

Oracle E-Business Suite CVE-2026-46817 is now an active exploitation risk

Oracle E-Business Suite CVE-2026-46817 is now an active exploitation risk Oracle E-Business Suite has another critical exposure that defenders should move out o...

June 30, 2026
8 min read
Actively exploited UniFi OS flaws turn network controllers into root-level targets

Actively exploited UniFi OS flaws turn network controllers into root-level targets

Actively exploited UniFi OS flaws turn network controllers into root-level targets CISA has added three Ubiquiti UniFi OS vulnerabilities to its Known Exploited...

June 29, 2026
7 min read
CISA's June 28 KEV deadline puts PTC Windchill and Cisco Unified CM on emergency footing

CISA's June 28 KEV deadline puts PTC Windchill and Cisco Unified CM on emergency footing

CISA's June 28 KEV deadline puts PTC Windchill and Cisco Unified CM on emergency footing CISA's latest Known Exploited Vulnerabilities update has turned Sunday,...

June 28, 2026
8 min read
Lantronix EDS5000 exploitation shows why edge device patch windows are shrinking

Lantronix EDS5000 exploitation shows why edge device patch windows are shrinking

Lantronix EDS5000 exploitation shows why edge device patch windows are shrinking CISA has added CVE-2025-67038 to its Known Exploited Vulnerabilities catalog af...

June 26, 2026
6 min read
Gravity SMTP bug turns WordPress email settings into an attacker map

Gravity SMTP bug turns WordPress email settings into an attacker map

Gravity SMTP bug turns WordPress email settings into an attacker map Attackers are actively exploiting CVE-2026-4020, a Gravity SMTP [vulnerability](https://inv...

June 21, 2026
5 min read
Splunk Enterprise CVE-2026-20253 hits KEV as exploitation begins

Splunk Enterprise CVE-2026-20253 hits KEV as exploitation begins

Splunk Enterprise CVE-2026-20253 hits KEV as exploitation begins Splunk's June 18, 2026 advisory update changed CVE-2026-20253 from a patch-now issue into an ac...

June 20, 2026
5 min read
Joomla JCE exploitation forces defenders beyond simple patching

Joomla JCE exploitation forces defenders beyond simple patching

Joomla JCE exploitation forces defenders beyond simple patching On Friday, June 19, 2026, defenders running Joomla sites with the JCE editor are at a deadline,...

June 19, 2026
6 min read