{"type":"bundle","id":"bundle--fih-1779668990718","spec_version":"2.1","objects":[{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0000-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-26980","pattern":"[vulnerability:name = 'CVE-2026-26980']","pattern_type":"stix","valid_from":"2026-05-24T14:12:32.000Z","labels":["cve","rss"],"external_references":[{"source_name":"BleepingComputer","url":"https://www.bleepingcomputer.com/news/security/ghost-cms-sql-injection-flaw-exploited-in-large-scale-clickfix-campaign/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0001-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-24T11:51:37.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192586/hacking/security-affairs-newsletter-round-578-by-pierluigi-paganini-international-edition.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0002-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-24T07:54:20.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192566/uncategorized/u-s-cisa-adds-a-flaw-in-drupal-core-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0003-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-23T16:17:07.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192557/security/cve-2026-9082-drupals-highly-critical-sql-injection-flaw-is-already-under-active-attack.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0004-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-48172","pattern":"[vulnerability:name = 'CVE-2026-48172']","pattern_type":"stix","valid_from":"2026-05-23T09:17:38.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/litespeed-cpanel-plugin-0-day-exploited/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0005-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-48172","pattern":"[vulnerability:name = 'CVE-2026-48172']","pattern_type":"stix","valid_from":"2026-05-23T07:35:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/litespeed-cpanel-plugin-cve-2026-48172.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0006-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-23T07:23:48.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/drupal-core-sql-injection-bug-actively.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0007-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34908","pattern":"[vulnerability:name = 'CVE-2026-34908']","pattern_type":"stix","valid_from":"2026-05-22T21:14:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/ubiquiti-patches-three-critical-vulnerabilities-in-unifi-os"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0008-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34909","pattern":"[vulnerability:name = 'CVE-2026-34909']","pattern_type":"stix","valid_from":"2026-05-22T21:14:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/ubiquiti-patches-three-critical-vulnerabilities-in-unifi-os"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0009-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34910","pattern":"[vulnerability:name = 'CVE-2026-34910']","pattern_type":"stix","valid_from":"2026-05-22T21:14:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/ubiquiti-patches-three-critical-vulnerabilities-in-unifi-os"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68756e74-0010-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"hunt.io","pattern":"[domain-name:value = 'hunt.io']","pattern_type":"stix","valid_from":"2026-05-22T20:51:28.000Z","labels":["domain","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/middle-east-malicious-infrastructure-report-highlights-concentration-of-c2-servers"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0011-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-34291","pattern":"[vulnerability:name = 'CVE-2025-34291']","pattern_type":"stix","valid_from":"2026-05-22T20:13:21.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/cisa-adds-trend-micro-apex-one-and-langflow-flaws-to-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0012-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34926","pattern":"[vulnerability:name = 'CVE-2026-34926']","pattern_type":"stix","valid_from":"2026-05-22T20:13:21.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/cisa-adds-trend-micro-apex-one-and-langflow-flaws-to-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0013-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-22T19:10:05.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/pt-metasploit-wrap-up-05-22-2026"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0014-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-22T17:15:26.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/drupal-vulnerability-in-hacker-crosshairs-shortly-after-disclosure/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0015-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-22T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/22/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0016-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-34291","pattern":"[vulnerability:name = 'CVE-2025-34291']","pattern_type":"stix","valid_from":"2026-05-22T11:19:54.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cisa-adds-langflow-origin-validation-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0017-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45498","pattern":"[vulnerability:name = 'CVE-2026-45498']","pattern_type":"stix","valid_from":"2026-05-22T09:55:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cisa-alert-on-exploited-microsoft-defender-zero-day/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--76756c6e-0018-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"vulnerability@cisa.dhs.gov","pattern":"[email-addr:value = 'vulnerability@cisa.dhs.gov']","pattern_type":"stix","valid_from":"2026-05-22T09:34:16.000Z","labels":["email","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/22/cisa-kev-nomination-form/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0019-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-34291","pattern":"[vulnerability:name = 'CVE-2025-34291']","pattern_type":"stix","valid_from":"2026-05-22T09:13:30.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192529/hacking/u-s-cisa-adds-trend-micro-apex-one-and-langflow-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0020-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34926","pattern":"[vulnerability:name = 'CVE-2026-34926']","pattern_type":"stix","valid_from":"2026-05-22T08:19:24.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/trendai-patches-apex-one-zero-day-exploited-in-the-wild/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68756e74-0021-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"hunt.io","pattern":"[domain-name:value = 'hunt.io']","pattern_type":"stix","valid_from":"2026-05-22T07:29:37.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192518/hacking/one-telecom-provider-hosted-most-of-the-middle-east-s-active-c2-infrastructure.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0022-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34926","pattern":"[vulnerability:name = 'CVE-2026-34926']","pattern_type":"stix","valid_from":"2026-05-22T06:28:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cisa-warns-trend-micro-apex-one-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0023-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-34291","pattern":"[vulnerability:name = 'CVE-2025-34291']","pattern_type":"stix","valid_from":"2026-05-22T05:47:33.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cisa-adds-exploited-langflow-and-trend.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0024-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20223","pattern":"[vulnerability:name = 'CVE-2026-20223']","pattern_type":"stix","valid_from":"2026-05-22T05:36:18.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cisco-patches-cvss-100-secure-workload.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0025-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9942,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9942,']","pattern_type":"stix","valid_from":"2026-05-22T02:00:02.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/33004"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0026-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45829","pattern":"[vulnerability:name = 'CVE-2026-45829']","pattern_type":"stix","valid_from":"2026-05-21T21:29:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/4175958/unpatched-chromadb-flaw-leaves-servers-open-to-remote-code-execution.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0027-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2008-4250","pattern":"[vulnerability:name = 'CVE-2008-4250']","pattern_type":"stix","valid_from":"2026-05-21T20:27:11.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192508/security/u-s-cisa-adds-microsoft-and-adobe-flaws-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0028-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-12802","pattern":"[vulnerability:name = 'CVE-2024-12802']","pattern_type":"stix","valid_from":"2026-05-21T17:13:30.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/attackers-exploit-sonicwall-vpn-vulnerability-to-bypass-mfa"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0029-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-21T13:25:37.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/cve-2026-9082-highly-critical-sql-injection-vulnerability-in-drupal-core-sa-core-2026-004"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0030-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20223","pattern":"[vulnerability:name = 'CVE-2026-20223']","pattern_type":"stix","valid_from":"2026-05-21T13:22:17.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192473/security/cisco-fixed-maximum-severity-flaw-cve-2026-20223-in-secure-workload.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0031-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-10504","pattern":"[vulnerability:name = 'CVE-2025-10504']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0032-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-12142","pattern":"[vulnerability:name = 'CVE-2025-12142']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0033-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-12143","pattern":"[vulnerability:name = 'CVE-2025-12143']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0034-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2022-4304","pattern":"[vulnerability:name = 'CVE-2022-4304']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-01"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0035-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-3449","pattern":"[vulnerability:name = 'CVE-2025-3449']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0036-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-3448","pattern":"[vulnerability:name = 'CVE-2025-3448']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0037-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-11498","pattern":"[vulnerability:name = 'CVE-2025-11498']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-141-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0038-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-34291","pattern":"[vulnerability:name = 'CVE-2025-34291']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/21/cisa-adds-two-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0039-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34926","pattern":"[vulnerability:name = 'CVE-2026-34926']","pattern_type":"stix","valid_from":"2026-05-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/21/cisa-adds-two-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0040-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41091","pattern":"[vulnerability:name = 'CVE-2026-41091']","pattern_type":"stix","valid_from":"2026-05-21T11:32:23.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/microsoft-defender-zero-day-vulnerabilities/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0041-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45498","pattern":"[vulnerability:name = 'CVE-2026-45498']","pattern_type":"stix","valid_from":"2026-05-21T11:32:23.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/microsoft-defender-zero-day-vulnerabilities/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0042-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-21T10:58:49.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/drupal-patches-highly-critical-vulnerability-exposing-websites-to-hacking/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0043-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41091","pattern":"[vulnerability:name = 'CVE-2026-41091']","pattern_type":"stix","valid_from":"2026-05-21T10:57:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/21/microsoft-defender-vulnerabilities-cve-2026-41091-cve-2026-45498/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0044-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45498","pattern":"[vulnerability:name = 'CVE-2026-45498']","pattern_type":"stix","valid_from":"2026-05-21T10:57:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/21/microsoft-defender-vulnerabilities-cve-2026-41091-cve-2026-45498/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0045-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41091","pattern":"[vulnerability:name = 'CVE-2026-41091']","pattern_type":"stix","valid_from":"2026-05-21T10:55:57.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/microsoft-warns-of-two-actively.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0046-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20223","pattern":"[vulnerability:name = 'CVE-2026-20223']","pattern_type":"stix","valid_from":"2026-05-21T09:13:21.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/critical-vulnerability-in-cisco-secure-workload/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0047-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46333","pattern":"[vulnerability:name = 'CVE-2026-46333']","pattern_type":"stix","valid_from":"2026-05-21T07:35:53.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/9-year-old-linux-kernel-flaw-enables.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0048-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46333","pattern":"[vulnerability:name = 'CVE-2026-46333']","pattern_type":"stix","valid_from":"2026-05-21T07:10:25.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/nine-year-old-kernel-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0049-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3517","pattern":"[vulnerability:name = 'CVE-2026-3517']","pattern_type":"stix","valid_from":"2026-05-21T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-319/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0050-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3518","pattern":"[vulnerability:name = 'CVE-2026-3518']","pattern_type":"stix","valid_from":"2026-05-21T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-318/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--6376652e-0051-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"cve.org","pattern":"[domain-name:value = 'cve.org']","pattern_type":"stix","valid_from":"2026-05-21T03:44:11.000Z","labels":["domain","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/highly-critical-drupal-core-flaw.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0052-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-9082","pattern":"[vulnerability:name = 'CVE-2026-9082']","pattern_type":"stix","valid_from":"2026-05-21T03:44:11.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/highly-critical-drupal-core-flaw.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0053-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9940,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9940,']","pattern_type":"stix","valid_from":"2026-05-21T02:00:03.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/33000"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0054-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45585","pattern":"[vulnerability:name = 'CVE-2026-45585']","pattern_type":"stix","valid_from":"2026-05-21T01:08:41.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/4175411/microsoft-is-working-on-a-patch-for-yellowkey-attack-on-bitlocker-offers-temporary-fix-2.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0055-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46333","pattern":"[vulnerability:name = 'CVE-2026-46333']","pattern_type":"stix","valid_from":"2026-05-20T15:40:19.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Qualys Blog","url":"https://blog.qualys.com/misc/2026/05/20/cve-2026-46333-local-root-privilege-escalation-and-credential-disclosure-in-the-linux-kernel-ptrace-path"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0056-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46333","pattern":"[vulnerability:name = 'CVE-2026-46333']","pattern_type":"stix","valid_from":"2026-05-20T15:40:19.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Qualys Blog","url":"https://blog.qualys.com/vulnerabilities-threat-research/2026/05/20/cve-2026-46333-local-root-privilege-escalation-and-credential-disclosure-in-the-linux-kernel-ptrace-path"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0057-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45585","pattern":"[vulnerability:name = 'CVE-2026-45585']","pattern_type":"stix","valid_from":"2026-05-20T15:07:51.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192449/hacking/microsoft-issues-yellowkey-mitigation-no-patch-yet.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--6d6f6e64-0058-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"monday.com","pattern":"[domain-name:value = 'monday.com']","pattern_type":"stix","valid_from":"2026-05-20T14:00:58.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/20/nanoco-seed-funding-12-million/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0059-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3102","pattern":"[vulnerability:name = 'CVE-2026-3102']","pattern_type":"stix","valid_from":"2026-05-20T13:26:42.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/exiftool-vulnerability-2/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0060-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24207","pattern":"[vulnerability:name = 'CVE-2026-24207']","pattern_type":"stix","valid_from":"2026-05-20T12:13:19.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/nvidia-triton-inference-server-flaw-raises-risk-of-unauthorized-access/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0061-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2008-4250","pattern":"[vulnerability:name = 'CVE-2008-4250']","pattern_type":"stix","valid_from":"2026-05-20T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/20/cisa-adds-seven-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0062-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2009-1537","pattern":"[vulnerability:name = 'CVE-2009-1537']","pattern_type":"stix","valid_from":"2026-05-20T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/20/cisa-adds-seven-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0063-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2009-3459","pattern":"[vulnerability:name = 'CVE-2009-3459']","pattern_type":"stix","valid_from":"2026-05-20T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/20/cisa-adds-seven-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0064-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2010-0249","pattern":"[vulnerability:name = 'CVE-2010-0249']","pattern_type":"stix","valid_from":"2026-05-20T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/20/cisa-adds-seven-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0065-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2010-0806","pattern":"[vulnerability:name = 'CVE-2010-0806']","pattern_type":"stix","valid_from":"2026-05-20T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/20/cisa-adds-seven-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0066-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4109","pattern":"[vulnerability:name = 'CVE-2026-4109']","pattern_type":"stix","valid_from":"2026-05-20T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/20/cisa-adds-seven-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0067-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3102","pattern":"[vulnerability:name = 'CVE-2026-3102']","pattern_type":"stix","valid_from":"2026-05-20T09:02:31.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Kaspersky Securelist","url":"https://securelist.com/exiftool-compromise-mac/119866/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0068-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5140","pattern":"[vulnerability:name = 'CVE-2026-5140']","pattern_type":"stix","valid_from":"2026-05-20T08:39:56.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/pardus-linux-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0069-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45585","pattern":"[vulnerability:name = 'CVE-2026-45585']","pattern_type":"stix","valid_from":"2026-05-20T08:33:52.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/20/yellowkey-bitlocker-mitigation-cve-2026-45585/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0070-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45585","pattern":"[vulnerability:name = 'CVE-2026-45585']","pattern_type":"stix","valid_from":"2026-05-20T08:28:26.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/microsoft-releases-mitigation-for.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0071-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31635","pattern":"[vulnerability:name = 'CVE-2026-31635']","pattern_type":"stix","valid_from":"2026-05-20T07:36:57.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192436/uncategorized/dirtydecrypt-poc-released-for-yet-another-linux-flaw.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0072-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46376","pattern":"[vulnerability:name = 'CVE-2026-46376']","pattern_type":"stix","valid_from":"2026-05-20T06:30:14.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/freepbx-security-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0073-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9938,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9938,']","pattern_type":"stix","valid_from":"2026-05-20T02:00:02.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32998"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--6a69742e-0074-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"jit.io","pattern":"[domain-name:value = 'jit.io']","pattern_type":"stix","valid_from":"2026-05-19T23:52:06.000Z","labels":["domain","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/torq-acquires-jit-io-to-enhance-ai-driven-security-operations"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0075-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31635","pattern":"[vulnerability:name = 'CVE-2026-31635']","pattern_type":"stix","valid_from":"2026-05-19T14:56:26.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/dirtydecrypt-poc-released-for-linux.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0076-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-3465","pattern":"[vulnerability:name = 'CVE-2025-3465']","pattern_type":"stix","valid_from":"2026-05-19T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-139-01"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0077-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2005","pattern":"[vulnerability:name = 'CVE-2026-2005']","pattern_type":"stix","valid_from":"2026-05-19T09:19:42.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/20-year-old-postgresql-flaw-gets-public-poc-exploit/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0078-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-9643","pattern":"[vulnerability:name = 'CVE-2024-9643']","pattern_type":"stix","valid_from":"2026-05-19T08:52:42.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/four-faith-industrial-routers-targeted-in-botnet-hijacking-campaign/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0079-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8153","pattern":"[vulnerability:name = 'CVE-2026-8153']","pattern_type":"stix","valid_from":"2026-05-19T06:18:51.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/critical-vulnerability-exposes-industrial-robot-fleets-to-hacking/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0080-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-19T04:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3495294/schwachstellen-managen-die-6-besten-vulnerability-management-tools.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--70656f70-0081-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"peopleimages.com","pattern":"[domain-name:value = 'peopleimages.com']","pattern_type":"stix","valid_from":"2026-05-19T04:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3835828/siem-kaufratgeber.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0082-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-19T04:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3835828/siem-kaufratgeber.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0083-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-19T03:48:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3492776/security-infotainment-die-besten-hacker-dokus.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0084-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9936,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9936,']","pattern_type":"stix","valid_from":"2026-05-19T02:00:03.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32996"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0085-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-18T13:29:49.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/18/ngnix-vulnerability-exploited-cve-2026-42945/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0086-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-8088","pattern":"[vulnerability:name = 'CVE-2025-8088']","pattern_type":"stix","valid_from":"2026-05-18T12:33:49.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/gammaload-in-phishing-campaigns/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0087-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-18T11:20:48.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/critical-nginx-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0088-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8043","pattern":"[vulnerability:name = 'CVE-2026-8043']","pattern_type":"stix","valid_from":"2026-05-18T10:54:05.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/ivanti-fortinet-sap-vmware-n8n-patch.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0089-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-39987","pattern":"[vulnerability:name = 'CVE-2026-39987']","pattern_type":"stix","valid_from":"2026-05-18T08:45:28.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/critical-marimo-rce-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0090-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2020-17103","pattern":"[vulnerability:name = 'CVE-2020-17103']","pattern_type":"stix","valid_from":"2026-05-18T08:13:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192325/hacking/chaotic-eclipse-discloses-miniplasma-zero-day-suggesting-a-missing-or-undone-2020-windows-security-fix.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0091-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-18T06:33:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192289/uncategorized/experts-warn-of-active-exploitation-of-critical-nginx-flaw-cve-2026-42945.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0092-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-18T06:33:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192289/hacking/experts-warn-of-active-exploitation-of-critical-nginx-flaw-cve-2026-42945.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0093-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-17T13:54:22.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192278/security/security-affairs-malware-newsletter-round-97.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0094-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-17T11:57:53.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/nginx-cve-2026-42945-exploited-in-wild.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0095-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42897","pattern":"[vulnerability:name = 'CVE-2026-42897']","pattern_type":"stix","valid_from":"2026-05-16T17:30:29.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192240/hacking/u-s-cisa-adds-a-flaw-in-microsoft-exchange-server-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0096-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46333","pattern":"[vulnerability:name = 'CVE-2026-46333']","pattern_type":"stix","valid_from":"2026-05-16T07:52:28.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/linux-ssh-keysign-pwn-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0097-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42897","pattern":"[vulnerability:name = 'CVE-2026-42897']","pattern_type":"stix","valid_from":"2026-05-15T14:03:58.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192204/security/cve-2026-42897-microsoft-confirms-active-exploitation-of-exchange-server-zero-day.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0098-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8181","pattern":"[vulnerability:name = 'CVE-2026-8181']","pattern_type":"stix","valid_from":"2026-05-15T13:32:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/critical-vulnerability-in-burst-statistics-plugin-allows-admin-takeover"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0099-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41702","pattern":"[vulnerability:name = 'CVE-2026-41702']","pattern_type":"stix","valid_from":"2026-05-15T12:47:02.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/vmware-fusion-flaw-gain-root-privileges/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0100-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-15T12:43:27.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/15/cisco-sd-wan-zero-day-cve-2026-20182/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0101-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42897","pattern":"[vulnerability:name = 'CVE-2026-42897']","pattern_type":"stix","valid_from":"2026-05-15T12:06:53.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/microsoft-warns-of-exchange-server-zero-day-exploited-in-the-wild/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0102-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42897","pattern":"[vulnerability:name = 'CVE-2026-42897']","pattern_type":"stix","valid_from":"2026-05-15T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/15/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0103-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44338","pattern":"[vulnerability:name = 'CVE-2026-44338']","pattern_type":"stix","valid_from":"2026-05-15T11:57:27.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/praisonai-vulnerability-actively-exploited/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0104-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42897","pattern":"[vulnerability:name = 'CVE-2026-42897']","pattern_type":"stix","valid_from":"2026-05-15T09:58:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/15/exchange-server-cve-2026-42897-exploited/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0105-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8178","pattern":"[vulnerability:name = 'CVE-2026-8178']","pattern_type":"stix","valid_from":"2026-05-15T08:36:56.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/amazon-redshift-jdbc-driver-flaws/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0106-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-15T07:21:21.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cisco-catalyst-sd-wan-controller-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0107-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-15T06:28:46.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/cisco-patches-another-sd-wan-zero-day-the-sixth-exploited-in-2026/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0108-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44578","pattern":"[vulnerability:name = 'CVE-2026-44578']","pattern_type":"stix","valid_from":"2026-05-15T06:22:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/next-js-security-flaw-leaks-cloud-credentials/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0109-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42897","pattern":"[vulnerability:name = 'CVE-2026-42897']","pattern_type":"stix","valid_from":"2026-05-15T06:19:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/on-prem-microsoft-exchange-server-cve.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0110-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-15T05:28:03.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cisa-adds-cisco-sd-wan-cve-2026-20182.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0111-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-15T05:13:08.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/palo-alto-firewalls-hit-by-pan-os-zero-day/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0112-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9934,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9934,']","pattern_type":"stix","valid_from":"2026-05-15T04:10:13.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32992"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0113-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-15T01:05:46.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/faq-about-the-continued-exploitation-of-cisco-catalyst-sd-wan-vulnerabilities-uat-8616"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0114-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4782","pattern":"[vulnerability:name = 'CVE-2026-4782']","pattern_type":"stix","valid_from":"2026-05-14T23:38:45.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/two-vulnerabilities-found-in-popular-wordpress-plugin-avada-builder"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0115-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4798","pattern":"[vulnerability:name = 'CVE-2026-4798']","pattern_type":"stix","valid_from":"2026-05-14T23:38:45.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/two-vulnerabilities-found-in-popular-wordpress-plugin-avada-builder"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0116-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-14T23:06:50.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/4171437/ai-agent-finds-18-year-old-remote-code-execution-flaw-in-nginx.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0117-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-14T20:09:56.000Z","labels":["cve","rss"],"external_references":[{"source_name":"BleepingComputer","url":"https://www.bleepingcomputer.com/news/security/cisco-warns-of-new-critical-sd-wan-flaw-exploited-in-zero-day-attacks/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0118-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46300","pattern":"[vulnerability:name = 'CVE-2026-46300']","pattern_type":"stix","valid_from":"2026-05-14T19:38:03.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/fragnesia-cve-2026-46300-faq-about-new-linux-kernel-xfrm-esp-in-tcp-priv-esc"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0119-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0265","pattern":"[vulnerability:name = 'CVE-2026-0265']","pattern_type":"stix","valid_from":"2026-05-14T19:15:49.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/etr-cve-2026-0265-authentication-bypass-in-palo-alto-networks-pan-os"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0120-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-14T18:35:43.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192157/hacking/u-s-cisa-adds-a-flaw-in-cisco-catalyst-sd-wan-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0121-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46300","pattern":"[vulnerability:name = 'CVE-2026-46300']","pattern_type":"stix","valid_from":"2026-05-14T17:57:14.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192145/uncategorized/linux-kernel-bug-fragnesia-allows-local-root-access-attacks.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0122-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-14T17:45:20.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cisco-catalyst-sd-wan-controller-auth.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0123-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-14T16:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/ve-cve-2026-20182-critical-authentication-bypass-cisco-catalyst-sd-wan-controller-fixed"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0124-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20127","pattern":"[vulnerability:name = 'CVE-2026-20127']","pattern_type":"stix","valid_from":"2026-05-14T16:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/ve-cve-2026-20182-critical-authentication-bypass-cisco-catalyst-sd-wan-controller-fixed"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0125-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41702","pattern":"[vulnerability:name = 'CVE-2026-41702']","pattern_type":"stix","valid_from":"2026-05-14T15:46:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192136/security/broadcom-releases-vmware-fusion-security-update-for-root-access-bug.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0126-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-32975","pattern":"[vulnerability:name = 'CVE-2025-32975']","pattern_type":"stix","valid_from":"2026-05-14T15:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/critical-quest-kace-sma-flaw-exploited-after-10-months"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0127-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46300","pattern":"[vulnerability:name = 'CVE-2026-46300']","pattern_type":"stix","valid_from":"2026-05-14T14:34:43.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/14/fragnesia-cve-2026-46300-linux-lpe-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0128-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43284","pattern":"[vulnerability:name = 'CVE-2026-43284']","pattern_type":"stix","valid_from":"2026-05-14T14:34:43.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/14/fragnesia-cve-2026-46300-linux-lpe-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0129-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46300","pattern":"[vulnerability:name = 'CVE-2026-46300']","pattern_type":"stix","valid_from":"2026-05-14T13:44:46.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/new-linux-kernel-vulnerability-fragnesia-allows-root-privilege-escalation/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0130-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-14T13:30:44.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192132/hacking/nginx-rift-an-18-year-old-flaw-in-the-worlds-most-deployed-web-server-just-came-to-light.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0131-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8181","pattern":"[vulnerability:name = 'CVE-2026-8181']","pattern_type":"stix","valid_from":"2026-05-14T13:09:58.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/critical-wordpress-plugin-flaw-allows-unauthorized-access/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0132-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41096","pattern":"[vulnerability:name = 'CVE-2026-41096']","pattern_type":"stix","valid_from":"2026-05-14T12:57:44.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/windows-dns-client-security-flaw-exposes-systems/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0133-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33862","pattern":"[vulnerability:name = 'CVE-2026-33862']","pattern_type":"stix","valid_from":"2026-05-14T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0134-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33893","pattern":"[vulnerability:name = 'CVE-2026-33893']","pattern_type":"stix","valid_from":"2026-05-14T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0135-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-4367","pattern":"[vulnerability:name = 'CVE-2024-4367']","pattern_type":"stix","valid_from":"2026-05-14T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0136-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20182","pattern":"[vulnerability:name = 'CVE-2026-20182']","pattern_type":"stix","valid_from":"2026-05-14T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/14/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0137-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45185","pattern":"[vulnerability:name = 'CVE-2026-45185']","pattern_type":"stix","valid_from":"2026-05-14T11:40:55.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/critical-exim-mailer-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0138-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44338","pattern":"[vulnerability:name = 'CVE-2026-44338']","pattern_type":"stix","valid_from":"2026-05-14T11:40:14.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/praisonai-cve-2026-44338-auth-bypass.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0139-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33017","pattern":"[vulnerability:name = 'CVE-2026-33017']","pattern_type":"stix","valid_from":"2026-05-14T07:56:14.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/langflow-cve-2026-33017-exploited/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0140-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46300","pattern":"[vulnerability:name = 'CVE-2026-46300']","pattern_type":"stix","valid_from":"2026-05-14T07:34:19.000Z","labels":["cve","rss"],"external_references":[{"source_name":"BleepingComputer","url":"https://www.bleepingcomputer.com/news/security/new-fragnesia-linux-flaw-lets-attackers-gain-root-privileges/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0141-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-46300","pattern":"[vulnerability:name = 'CVE-2026-46300']","pattern_type":"stix","valid_from":"2026-05-14T07:06:15.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/new-fragnesia-linux-kernel-lpe-grants.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0142-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8053","pattern":"[vulnerability:name = 'CVE-2026-8053']","pattern_type":"stix","valid_from":"2026-05-14T06:47:33.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/mongodb-security-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0143-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42945","pattern":"[vulnerability:name = 'CVE-2026-42945']","pattern_type":"stix","valid_from":"2026-05-14T06:00:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/18-year-old-nginx-rewrite-module-flaw.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0144-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9932,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9932,']","pattern_type":"stix","valid_from":"2026-05-14T04:20:11.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32988"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0145-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-32975","pattern":"[vulnerability:name = 'CVE-2025-32975']","pattern_type":"stix","valid_from":"2026-05-13T13:24:36.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192067/security/quest-kace-sma-flaw-cve-2025-32975-when-one-unpatched-tool-opens-the-door-to-60-organizations.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0146-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44277","pattern":"[vulnerability:name = 'CVE-2026-44277']","pattern_type":"stix","valid_from":"2026-05-13T13:09:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/fortinet-addresses-critical-vulnerabilities-in-fortisandbox-and-fortiauthenticator"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0147-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-40361","pattern":"[vulnerability:name = 'CVE-2026-40361']","pattern_type":"stix","valid_from":"2026-05-13T10:41:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/13/microsoft-mdash-agentic-ai-security-system/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0148-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-40364","pattern":"[vulnerability:name = 'CVE-2026-40364']","pattern_type":"stix","valid_from":"2026-05-13T10:41:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/13/microsoft-mdash-agentic-ai-security-system/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0149-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-40361","pattern":"[vulnerability:name = 'CVE-2026-40361']","pattern_type":"stix","valid_from":"2026-05-13T10:33:46.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/microsoft-patches-critical-zero-click-outlook-vulnerability-threatening-enterprises/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0150-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-54957","pattern":"[vulnerability:name = 'CVE-2025-54957']","pattern_type":"stix","valid_from":"2026-05-13T07:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Google Project Zero","url":"https://projectzero.google/2026/05/pixel-10-exploit.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0151-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44277","pattern":"[vulnerability:name = 'CVE-2026-44277']","pattern_type":"stix","valid_from":"2026-05-13T06:22:55.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192047/security/critical-fortinet-vulnerabilities-fixed-in-fortisandbox-and-fortiauthenticator.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0152-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-13T04:14:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3494368/der-kaufratgeber-fur-breach-attack-simulation-tools.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0153-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9930,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9930,']","pattern_type":"stix","valid_from":"2026-05-13T03:05:02.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32984"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0154-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41089","pattern":"[vulnerability:name = 'CVE-2026-41089']","pattern_type":"stix","valid_from":"2026-05-13T00:22:19.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/em-patch-tuesday-may-2026"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0155-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-40361","pattern":"[vulnerability:name = 'CVE-2026-40361']","pattern_type":"stix","valid_from":"2026-05-12T19:03:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/12/microsoft-may-2026-patch-tuesday/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0156-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-40364","pattern":"[vulnerability:name = 'CVE-2026-40364']","pattern_type":"stix","valid_from":"2026-05-12T19:03:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/12/microsoft-may-2026-patch-tuesday/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--6173702e-0157-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"asp.net","pattern":"[domain-name:value = 'asp.net']","pattern_type":"stix","valid_from":"2026-05-12T17:42:34.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/microsofts-may-2026-patch-tuesday-addresses-118-cves-cve-2026-41103"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0158-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41103","pattern":"[vulnerability:name = 'CVE-2026-41103']","pattern_type":"stix","valid_from":"2026-05-12T17:42:34.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/microsofts-may-2026-patch-tuesday-addresses-118-cves-cve-2026-41103"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0159-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-54518","pattern":"[vulnerability:name = 'CVE-2025-54518']","pattern_type":"stix","valid_from":"2026-05-12T17:42:34.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/microsofts-may-2026-patch-tuesday-addresses-118-cves-cve-2026-41103"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0160-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-45185","pattern":"[vulnerability:name = 'CVE-2026-45185']","pattern_type":"stix","valid_from":"2026-05-12T16:44:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/new-exim-bdat-vulnerability-exposes.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0161-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-12T15:44:50.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/12/cpanel-vulnerability-exploited-backdoor-cve-2026-41940/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--6d656e64-0162-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"mend.io","pattern":"[domain-name:value = 'mend.io']","pattern_type":"stix","valid_from":"2026-05-12T14:47:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/rubygems-suspends-new-signups-after.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0163-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-12T13:35:44.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/threat-actor-mrrot13-exploits-critical-cpanel-flaw-to-deploy-filemanager-backdoor"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0164-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44413","pattern":"[vulnerability:name = 'CVE-2026-44413']","pattern_type":"stix","valid_from":"2026-05-12T12:26:12.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/12/jetbrains-teamcity-vulnerability-cve-2026-44413/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0165-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-2595","pattern":"[vulnerability:name = 'CVE-2025-2595']","pattern_type":"stix","valid_from":"2026-05-12T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-132-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0166-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-41659","pattern":"[vulnerability:name = 'CVE-2025-41659']","pattern_type":"stix","valid_from":"2026-05-12T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-132-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0167-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-41691","pattern":"[vulnerability:name = 'CVE-2025-41691']","pattern_type":"stix","valid_from":"2026-05-12T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-132-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0168-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-12T11:41:28.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/192013/cyber-crime/attackers-exploit-cpanel-cve-2026-41940-to-deploy-filemanager-backdoor.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0169-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-12T10:26:03.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/4169957/cpanel-flaw-exposes-enterprises-to-hosting-supply-chain-risks.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0170-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-44211","pattern":"[vulnerability:name = 'CVE-2026-44211']","pattern_type":"stix","valid_from":"2026-05-12T09:12:28.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cline-ai-agent-flaw-launch-rce-attacks/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--676f6f67-0171-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"googletagmanager.com","pattern":"[domain-name:value = 'googletagmanager.com']","pattern_type":"stix","valid_from":"2026-05-12T06:39:17.000Z","labels":["domain","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/magecart-hackers-exploit-google-tag-manager/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0172-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-48804","pattern":"[vulnerability:name = 'CVE-2025-48804']","pattern_type":"stix","valid_from":"2026-05-12T05:59:20.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/bitunlocker-downgrade-attack-bypasses-windows-11-disk-encryption/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0173-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-8109","pattern":"[vulnerability:name = 'CVE-2026-8109']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-308/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0174-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34342","pattern":"[vulnerability:name = 'CVE-2026-34342']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-310/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0175-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33838","pattern":"[vulnerability:name = 'CVE-2026-33838']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-309/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0176-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28941","pattern":"[vulnerability:name = 'CVE-2026-28941']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-315/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0177-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28940","pattern":"[vulnerability:name = 'CVE-2026-28940']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-314/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0178-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28847","pattern":"[vulnerability:name = 'CVE-2026-28847']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-313/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0179-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28955","pattern":"[vulnerability:name = 'CVE-2026-28955']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-312/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0180-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28918","pattern":"[vulnerability:name = 'CVE-2026-28918']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-311/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0181-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-12659","pattern":"[vulnerability:name = 'CVE-2025-12659']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-317/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0182-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-12659","pattern":"[vulnerability:name = 'CVE-2025-12659']","pattern_type":"stix","valid_from":"2026-05-12T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-316/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0183-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-12T04:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3494023/cybersicherheitsvorschriften-so-erfullen-sie-ihre-compliance-anforderungen.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0184-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9928,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9928,']","pattern_type":"stix","valid_from":"2026-05-12T03:15:10.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32978"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0185-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-12T03:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3492789/customer-identity-access-management-die-6-besten-ciam-tools.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0186-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-11T17:54:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cpanel-cve-2026-41940-under-active.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0187-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-05-11T12:30:57.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cpanel-and-whm-servers-targeted/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0188-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0073","pattern":"[vulnerability:name = 'CVE-2026-0073']","pattern_type":"stix","valid_from":"2026-05-11T09:32:43.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/poc-exploit-released-for-android-zero-click-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0189-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42208","pattern":"[vulnerability:name = 'CVE-2026-42208']","pattern_type":"stix","valid_from":"2026-05-11T09:14:46.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191964/security/u-s-cisa-adds-a-flaw-in-berriai-litellm-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0190-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43284","pattern":"[vulnerability:name = 'CVE-2026-43284']","pattern_type":"stix","valid_from":"2026-05-11T08:15:28.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/new-dirty-frag-linux-vulnerability-possibly-exploited-in-attacks/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0191-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43500","pattern":"[vulnerability:name = 'CVE-2026-43500']","pattern_type":"stix","valid_from":"2026-05-11T08:15:28.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/new-dirty-frag-linux-vulnerability-possibly-exploited-in-attacks/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0192-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9926,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9926,']","pattern_type":"stix","valid_from":"2026-05-11T02:15:11.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32972"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0193-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-7482","pattern":"[vulnerability:name = 'CVE-2026-7482']","pattern_type":"stix","valid_from":"2026-05-10T12:41:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/ollama-out-of-bounds-read-vulnerability.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0194-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43284","pattern":"[vulnerability:name = 'CVE-2026-43284']","pattern_type":"stix","valid_from":"2026-05-09T07:22:34.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Qualys Blog","url":"https://blog.qualys.com/product-tech/vulnmgmt-detection-response/2026/05/09/dirty-frag-using-the-page-caches-as-an-attack-surface"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0195-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43500","pattern":"[vulnerability:name = 'CVE-2026-43500']","pattern_type":"stix","valid_from":"2026-05-09T07:22:34.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Qualys Blog","url":"https://blog.qualys.com/product-tech/vulnmgmt-detection-response/2026/05/09/dirty-frag-using-the-page-caches-as-an-attack-surface"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0196-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-29201","pattern":"[vulnerability:name = 'CVE-2026-29201']","pattern_type":"stix","valid_from":"2026-05-09T07:16:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cpanel-whm-patch-3-new-vulnerabilities.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0197-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43284","pattern":"[vulnerability:name = 'CVE-2026-43284']","pattern_type":"stix","valid_from":"2026-05-08T16:58:20.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/dirty-frag-cve-2026-43284-cve-2026-43500-frequently-asked-questions-linux-kernel-lpe"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0198-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43500","pattern":"[vulnerability:name = 'CVE-2026-43500']","pattern_type":"stix","valid_from":"2026-05-08T16:58:20.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/dirty-frag-cve-2026-43284-cve-2026-43500-frequently-asked-questions-linux-kernel-lpe"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0199-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23918","pattern":"[vulnerability:name = 'CVE-2026-23918']","pattern_type":"stix","valid_from":"2026-05-08T16:08:59.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/apache-fixes-critical-http-2-vulnerability-allowing-remote-code-execution"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0200-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43284","pattern":"[vulnerability:name = 'CVE-2026-43284']","pattern_type":"stix","valid_from":"2026-05-08T14:13:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/08/dirty-frag-linux-vulnerability-cve-2026-43284-cve-2026-43500/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0201-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-43500","pattern":"[vulnerability:name = 'CVE-2026-43500']","pattern_type":"stix","valid_from":"2026-05-08T14:13:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/08/dirty-frag-linux-vulnerability-cve-2026-43284-cve-2026-43500/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0202-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42208","pattern":"[vulnerability:name = 'CVE-2026-42208']","pattern_type":"stix","valid_from":"2026-05-08T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/08/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0203-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6973","pattern":"[vulnerability:name = 'CVE-2026-6973']","pattern_type":"stix","valid_from":"2026-05-08T10:30:49.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/08/ivanti-epmm-zero-day-cve-2026-6973/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0204-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41050","pattern":"[vulnerability:name = 'CVE-2026-41050']","pattern_type":"stix","valid_from":"2026-05-08T08:54:21.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/critical-vulnerability-in-rancher-fleet/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0205-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-68670","pattern":"[vulnerability:name = 'CVE-2025-68670']","pattern_type":"stix","valid_from":"2026-05-08T08:00:54.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Kaspersky Securelist","url":"https://securelist.com/cve-2025-68670/119742/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0206-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-08T07:50:01.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32968"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0207-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6973","pattern":"[vulnerability:name = 'CVE-2026-6973']","pattern_type":"stix","valid_from":"2026-05-08T05:41:30.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/ivanti-patches-epmm-zero-day-exploited-in-targeted-attacks/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0208-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-08T05:12:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/linux-kernel-dirty-frag-lpe-exploit.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0209-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9924,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9924,']","pattern_type":"stix","valid_from":"2026-05-08T02:00:03.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32966"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0210-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-08T01:19:01.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/4168646/a-vulnerability-in-the-palo-alto-networks-firewall-has-been-exploited-for-several-weeks.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0211-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-7482","pattern":"[vulnerability:name = 'CVE-2026-7482']","pattern_type":"stix","valid_from":"2026-05-07T21:14:16.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/4168584/ollama-vulnerability-highlights-danger-of-ai-frameworks-with-unrestricted-access.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0212-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-07T20:44:22.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191831/security/nation-state-actors-exploit-palo-alto-pan-os-zero-day-for-weeks.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0213-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6973","pattern":"[vulnerability:name = 'CVE-2026-6973']","pattern_type":"stix","valid_from":"2026-05-07T18:03:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191822/security/u-s-cisa-adds-a-flaw-in-ivanti-endpoint-manager-mobile-epmm-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0214-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6973","pattern":"[vulnerability:name = 'CVE-2026-6973']","pattern_type":"stix","valid_from":"2026-05-07T17:55:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0215-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-07T13:34:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/pan-os-rce-exploit-under-active-use.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0216-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-07T12:38:11.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cisa-issues-warning-over-palo-alto-pan-os-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0217-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6973","pattern":"[vulnerability:name = 'CVE-2026-6973']","pattern_type":"stix","valid_from":"2026-05-07T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/07/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0218-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-07T11:39:09.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Help Net Security","url":"https://www.helpnetsecurity.com/2026/05/07/state-sponsored-hackers-zero-day-attacks-palo-alto-firewalls/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68756e74-0219-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"hunt.io","pattern":"[domain-name:value = 'hunt.io']","pattern_type":"stix","valid_from":"2026-05-07T10:15:08.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191796/malware/from-android-tvs-to-routers-the-xlabs_v1-mirai-based-botnet-built-for-ddos-attacks.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0220-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23479","pattern":"[vulnerability:name = 'CVE-2026-23479']","pattern_type":"stix","valid_from":"2026-05-07T07:19:06.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/redis-security-flaws-expose-servers/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0221-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25243","pattern":"[vulnerability:name = 'CVE-2026-25243']","pattern_type":"stix","valid_from":"2026-05-07T07:19:06.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/redis-security-flaws-expose-servers/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0222-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25588","pattern":"[vulnerability:name = 'CVE-2026-25588']","pattern_type":"stix","valid_from":"2026-05-07T07:19:06.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/redis-security-flaws-expose-servers/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0223-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25589","pattern":"[vulnerability:name = 'CVE-2026-25589']","pattern_type":"stix","valid_from":"2026-05-07T07:19:06.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/redis-security-flaws-expose-servers/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0224-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23631","pattern":"[vulnerability:name = 'CVE-2026-23631']","pattern_type":"stix","valid_from":"2026-05-07T07:19:06.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/redis-security-flaws-expose-servers/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0225-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-07T06:51:04.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191780/security/u-s-cisa-adds-a-flaw-in-palo-alto-networks-pan-os-to-its-known-exploited-vulnerabilities-catalog.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0226-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20188","pattern":"[vulnerability:name = 'CVE-2026-20188']","pattern_type":"stix","valid_from":"2026-05-07T06:42:55.000Z","labels":["cve","rss"],"external_references":[{"source_name":"GBHackers","url":"https://gbhackers.com/cisco-network-flaw-exposes-devices/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0227-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9922,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9922,']","pattern_type":"stix","valid_from":"2026-05-07T02:00:02.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32964"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0228-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-07T00:00:53.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Unit 42","url":"https://unit42.paloaltonetworks.com/captive-portal-zero-day/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0229-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-06T20:33:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Record","url":"https://therecord.media/palo-alto-warns-of-critical-software-bug-firewalls"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68756e74-0230-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"hunt.io","pattern":"[domain-name:value = 'hunt.io']","pattern_type":"stix","valid_from":"2026-05-06T20:21:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/mirai-based-xlabsv1-botnet-exploits-adb.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--7365632e-0231-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"sec.cloudapps.cisco.com","pattern":"[domain-name:value = 'sec.cloudapps.cisco.com']","pattern_type":"stix","valid_from":"2026-05-06T16:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Cisco Advisories","url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-rce-ssrf-hENhuASy?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Unity%20Connection%20Remote%20Code%20Execution%20and%20Server-Side%20Request%20Forgery%20Vulnerabilities%26vs_k=1"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0232-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://sec.cloudapps.cisco.com/s","pattern":"[url:value = 'https://sec.cloudapps.cisco.com/s']","pattern_type":"stix","valid_from":"2026-05-06T16:00:00.000Z","labels":["url","rss"],"external_references":[{"source_name":"Cisco Advisories","url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-rce-ssrf-hENhuASy?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Unity%20Connection%20Remote%20Code%20Execution%20and%20Server-Side%20Request%20Forgery%20Vulnerabilities%26vs_k=1"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0233-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-29014","pattern":"[vulnerability:name = 'CVE-2026-29014']","pattern_type":"stix","valid_from":"2026-05-06T15:32:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SC Media","url":"https://www.scworld.com/brief/metinfo-cms-vulnerability-exploited-by-threat-actors"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0234-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-06T13:27:31.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/etr-critical-buffer-overflow-in-palo-alto-networks-pan-os-user-id-authentication-portal-cve-2026-0300"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0235-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-06T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/06/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0236-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23918","pattern":"[vulnerability:name = 'CVE-2026-23918']","pattern_type":"stix","valid_from":"2026-05-06T11:00:06.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191759/security/apache-fixes-critical-http-2-double-free-flaw-cve-2026-23918-enabling-rce.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0237-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-06T08:52:21.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191748/security/palo-alto-networks-pan-os-flaw-exploited-for-remote-code-execution.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0238-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-06T06:14:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/palo-alto-pan-os-flaw-under-active.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0239-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0300","pattern":"[vulnerability:name = 'CVE-2026-0300']","pattern_type":"stix","valid_from":"2026-05-06T04:46:23.000Z","labels":["cve","rss"],"external_references":[{"source_name":"SecurityWeek","url":"https://www.securityweek.com/palo-alto-networks-to-patch-zero-day-exploited-to-hack-firewalls/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0240-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-06T04:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3493611/dynamic-static-application-security-testing-die-besten-dast-sast-tools.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0241-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9920,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9920,']","pattern_type":"stix","valid_from":"2026-05-06T02:00:03.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32960"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0242-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-05T23:00:33.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Unit 42","url":"https://unit42.paloaltonetworks.com/cve-2026-31431-copy-fail/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0243-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23918","pattern":"[vulnerability:name = 'CVE-2026-23918']","pattern_type":"stix","valid_from":"2026-05-05T16:19:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0244-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0073","pattern":"[vulnerability:name = 'CVE-2026-0073']","pattern_type":"stix","valid_from":"2026-05-05T14:06:33.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Security Affairs","url":"https://securityaffairs.com/191710/breaking-news/critical-android-vulnerability-cve-2026-0073-fixed-by-google.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0245-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-11044","pattern":"[vulnerability:name = 'CVE-2025-11044']","pattern_type":"stix","valid_from":"2026-05-05T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-125-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0246-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-11043","pattern":"[vulnerability:name = 'CVE-2025-11043']","pattern_type":"stix","valid_from":"2026-05-05T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-125-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0247-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2018-1002208","pattern":"[vulnerability:name = 'CVE-2018-1002208']","pattern_type":"stix","valid_from":"2026-05-05T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-125-01"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0248-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-21661","pattern":"[vulnerability:name = 'CVE-2026-21661']","pattern_type":"stix","valid_from":"2026-05-05T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-125-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0249-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-29014","pattern":"[vulnerability:name = 'CVE-2026-29014']","pattern_type":"stix","valid_from":"2026-05-05T11:56:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73736c2e-0250-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"ssl.com","pattern":"[domain-name:value = 'ssl.com']","pattern_type":"stix","valid_from":"2026-05-05T11:39:45.000Z","labels":["domain","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32956"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0251-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-22679","pattern":"[vulnerability:name = 'CVE-2026-22679']","pattern_type":"stix","valid_from":"2026-05-05T07:37:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/weaver-e-cology-rce-flaw-cve-2026-22679.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0252-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-05T06:48:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Information Security Buzz","url":"https://informationsecuritybuzz.com/copy-fail-actively-exploited-linux-flaw/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--73687574-0253-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"shutterstock.com","pattern":"[domain-name:value = 'shutterstock.com']","pattern_type":"stix","valid_from":"2026-05-05T04:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"CSO Online","url":"https://www.csoonline.com/article/3494128/auswirkungen-auf-it-fachkrafte-10-anzeichen-fur-einen-schlechten-cso.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0254-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9918,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9918,']","pattern_type":"stix","valid_from":"2026-05-05T02:00:02.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32952"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0255-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://isc.sans.edu/podcastdetail/9916,","pattern":"[url:value = 'https://isc.sans.edu/podcastdetail/9916,']","pattern_type":"stix","valid_from":"2026-05-04T02:00:03.000Z","labels":["url","rss"],"external_references":[{"source_name":"SANS ISC","url":"https://isc.sans.edu/diary/rss/32946"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0256-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-03T06:26:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/05/cisa-adds-actively-exploited-linux-root.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0257-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-02T03:06:08.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Microsoft Security Blog","url":"https://www.microsoft.com/en-us/security/blog/2026/05/01/cve-2026-31431-copy-fail-vulnerability-enables-linux-root-privilege-escalation/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0258-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-05-01T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/05/01/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0259-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41265","pattern":"[vulnerability:name = 'CVE-2026-41265']","pattern_type":"stix","valid_from":"2026-05-01T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-307/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0260-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-04-30T15:50:50.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Tenable Blog","url":"https://www.tenable.com/blog/copy-fail-cve-2026-31431-frequently-asked-questions-about-linux-kernel-privilege-escalation"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0261-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-04-30T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/30/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--78696e74-0262-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"xint.io","pattern":"[domain-name:value = 'xint.io']","pattern_type":"stix","valid_from":"2026-04-30T09:24:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/04/new-linux-copy-fail-vulnerability.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0263-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-31431","pattern":"[vulnerability:name = 'CVE-2026-31431']","pattern_type":"stix","valid_from":"2026-04-30T09:24:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/04/new-linux-copy-fail-vulnerability.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0264-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41940","pattern":"[vulnerability:name = 'CVE-2026-41940']","pattern_type":"stix","valid_from":"2026-04-29T20:00:20.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/etr-cve-2026-41940-cpanel-whm-authentication-bypass"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0265-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-1708","pattern":"[vulnerability:name = 'CVE-2024-1708']","pattern_type":"stix","valid_from":"2026-04-29T08:46:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/04/cisa-adds-actively-exploited.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0266-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-42208","pattern":"[vulnerability:name = 'CVE-2026-42208']","pattern_type":"stix","valid_from":"2026-04-29T05:34:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/04/litellm-cve-2026-42208-sql-injection.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0267-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3854","pattern":"[vulnerability:name = 'CVE-2026-3854']","pattern_type":"stix","valid_from":"2026-04-28T18:19:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/04/researchers-discover-critical-github.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0268-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-1708","pattern":"[vulnerability:name = 'CVE-2024-1708']","pattern_type":"stix","valid_from":"2026-04-28T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/28/cisa-adds-two-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0269-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32202","pattern":"[vulnerability:name = 'CVE-2026-32202']","pattern_type":"stix","valid_from":"2026-04-28T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/28/cisa-adds-two-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0270-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25874","pattern":"[vulnerability:name = 'CVE-2026-25874']","pattern_type":"stix","valid_from":"2026-04-28T11:18:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"The Hacker News","url":"https://thehackernews.com/2026/04/critical-cve-2026-25874-leaves-hugging.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0271-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-35230","pattern":"[vulnerability:name = 'CVE-2026-35230']","pattern_type":"stix","valid_from":"2026-04-28T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-306/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0272-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5943","pattern":"[vulnerability:name = 'CVE-2026-5943']","pattern_type":"stix","valid_from":"2026-04-27T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-304/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0273-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5942","pattern":"[vulnerability:name = 'CVE-2026-5942']","pattern_type":"stix","valid_from":"2026-04-27T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-303/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0274-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5941","pattern":"[vulnerability:name = 'CVE-2026-5941']","pattern_type":"stix","valid_from":"2026-04-27T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-302/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0275-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5940","pattern":"[vulnerability:name = 'CVE-2026-5940']","pattern_type":"stix","valid_from":"2026-04-27T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-301/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0276-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-41276","pattern":"[vulnerability:name = 'CVE-2026-41276']","pattern_type":"stix","valid_from":"2026-04-27T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-300/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0277-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-7399","pattern":"[vulnerability:name = 'CVE-2024-7399']","pattern_type":"stix","valid_from":"2026-04-24T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/24/cisa-adds-four-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0278-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-57726","pattern":"[vulnerability:name = 'CVE-2024-57726']","pattern_type":"stix","valid_from":"2026-04-24T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/24/cisa-adds-four-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0279-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-57728","pattern":"[vulnerability:name = 'CVE-2024-57728']","pattern_type":"stix","valid_from":"2026-04-24T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/24/cisa-adds-four-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0280-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-29635","pattern":"[vulnerability:name = 'CVE-2025-29635']","pattern_type":"stix","valid_from":"2026-04-24T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/24/cisa-adds-four-known-exploited-vulnerabilities-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0281-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28747","pattern":"[vulnerability:name = 'CVE-2026-28747']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0282-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-27785","pattern":"[vulnerability:name = 'CVE-2026-27785']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0283-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32644","pattern":"[vulnerability:name = 'CVE-2026-32644']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0284-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32649","pattern":"[vulnerability:name = 'CVE-2026-32649']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0285-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20766","pattern":"[vulnerability:name = 'CVE-2026-20766']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-03"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0286-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6375","pattern":"[vulnerability:name = 'CVE-2026-6375']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0287-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6376","pattern":"[vulnerability:name = 'CVE-2026-6376']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-04"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0288-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-70994","pattern":"[vulnerability:name = 'CVE-2025-70994']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-01"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0289-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-39987","pattern":"[vulnerability:name = 'CVE-2026-39987']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/23/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0290-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6074","pattern":"[vulnerability:name = 'CVE-2026-6074']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-06"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0291-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-65856","pattern":"[vulnerability:name = 'CVE-2025-65856']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0292-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3893","pattern":"[vulnerability:name = 'CVE-2026-3893']","pattern_type":"stix","valid_from":"2026-04-23T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-113-02"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0293-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-6406","pattern":"[vulnerability:name = 'CVE-2026-6406']","pattern_type":"stix","valid_from":"2026-04-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-299/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0294-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24032","pattern":"[vulnerability:name = 'CVE-2026-24032']","pattern_type":"stix","valid_from":"2026-04-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-298/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0295-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25654","pattern":"[vulnerability:name = 'CVE-2026-25654']","pattern_type":"stix","valid_from":"2026-04-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-297/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0296-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5726","pattern":"[vulnerability:name = 'CVE-2026-5726']","pattern_type":"stix","valid_from":"2026-04-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-296/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0297-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33825","pattern":"[vulnerability:name = 'CVE-2026-33825']","pattern_type":"stix","valid_from":"2026-04-22T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/alerts/2026/04/22/cisa-adds-one-known-exploited-vulnerability-catalog"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0298-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-5873","pattern":"[vulnerability:name = 'CVE-2025-5873']","pattern_type":"stix","valid_from":"2026-04-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0299-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-10371","pattern":"[vulnerability:name = 'CVE-2025-10371']","pattern_type":"stix","valid_from":"2026-04-21T12:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"CISA Advisories","url":"https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-05"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0300-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5059","pattern":"[vulnerability:name = 'CVE-2026-5059']","pattern_type":"stix","valid_from":"2026-04-21T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-245/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--626f6f6b-0301-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"booking.com","pattern":"[domain-name:value = 'booking.com']","pattern_type":"stix","valid_from":"2026-04-20T14:24:24.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Check Point Research","url":"https://research.checkpoint.com/2026/20th-april-threat-intelligence-report/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0302-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-3721","pattern":"[vulnerability:name = 'CVE-2024-3721']","pattern_type":"stix","valid_from":"2026-04-20T13:01:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Infosecurity Magazine","url":"https://www.infosecurity-magazine.com/news/mirai-variant-dvr-flaw-iot-botnet/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0303-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-3721","pattern":"[vulnerability:name = 'CVE-2024-3721']","pattern_type":"stix","valid_from":"2026-04-17T13:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Fortinet Blog","url":"https://feeds.fortinet.com/~/953946956/0/fortinet/blog/threat-research~Tracking-Mirai-Variant-Nexcorium-A-VulnerabilityDriven-IoT-Botnet-Campaign"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0304-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2017-17215","pattern":"[vulnerability:name = 'CVE-2017-17215']","pattern_type":"stix","valid_from":"2026-04-17T13:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Fortinet Blog","url":"https://feeds.fortinet.com/~/953946956/0/fortinet/blog/threat-research~Tracking-Mirai-Variant-Nexcorium-A-VulnerabilityDriven-IoT-Botnet-Campaign"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0305-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2023-33538","pattern":"[vulnerability:name = 'CVE-2023-33538']","pattern_type":"stix","valid_from":"2026-04-16T22:00:13.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Unit 42","url":"https://unit42.paloaltonetworks.com/exploitation-of-cve-2023-33538/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0306-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33032","pattern":"[vulnerability:name = 'CVE-2026-33032']","pattern_type":"stix","valid_from":"2026-04-16T19:44:49.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Rapid7 Blog","url":"https://www.rapid7.com/blog/post/etr-cve-2026-33032-nginx-ui-missing-mcp-authentication"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--7365632e-0307-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"sec.cloudapps.cisco.com","pattern":"[domain-name:value = 'sec.cloudapps.cisco.com']","pattern_type":"stix","valid_from":"2026-04-15T16:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Cisco Advisories","url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-vulns-n2EJSbbw?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Unity%20Connection%20Cross-Site%20Scripting,%20Open%20Redirect,%20and%20SQL%20Injection%20Vulnerabilities%26vs_k=1"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--68747470-0308-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"https://sec.cloudapps.cisco.com/security/c","pattern":"[url:value = 'https://sec.cloudapps.cisco.com/security/c']","pattern_type":"stix","valid_from":"2026-04-15T16:00:00.000Z","labels":["url","rss"],"external_references":[{"source_name":"Cisco Advisories","url":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-unity-vulns-n2EJSbbw?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Unity%20Connection%20Cross-Site%20Scripting,%20Open%20Redirect,%20and%20SQL%20Injection%20Vulnerabilities%26vs_k=1"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0309-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33032","pattern":"[vulnerability:name = 'CVE-2026-33032']","pattern_type":"stix","valid_from":"2026-04-15T13:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Infosecurity Magazine","url":"https://www.infosecurity-magazine.com/news/nginx-ui-mcp-flaw-actively/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0310-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-22898","pattern":"[vulnerability:name = 'CVE-2026-22898']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-292/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0311-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32861","pattern":"[vulnerability:name = 'CVE-2026-32861']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-291/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0312-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32860","pattern":"[vulnerability:name = 'CVE-2026-32860']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-290/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0313-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71066","pattern":"[vulnerability:name = 'CVE-2025-71066']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-289/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0314-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5492","pattern":"[vulnerability:name = 'CVE-2026-5492']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-288/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0315-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5491","pattern":"[vulnerability:name = 'CVE-2026-5491']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-287/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0316-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5490","pattern":"[vulnerability:name = 'CVE-2026-5490']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-286/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0317-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5489","pattern":"[vulnerability:name = 'CVE-2026-5489']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-285/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0318-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5487","pattern":"[vulnerability:name = 'CVE-2026-5487']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-284/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0319-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5056","pattern":"[vulnerability:name = 'CVE-2026-5056']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-283/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0320-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2050","pattern":"[vulnerability:name = 'CVE-2026-2050']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-282/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0321-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34054","pattern":"[vulnerability:name = 'CVE-2026-34054']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-281/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0322-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4682","pattern":"[vulnerability:name = 'CVE-2026-4682']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-280/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0323-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32183","pattern":"[vulnerability:name = 'CVE-2026-32183']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-279/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0324-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-33104","pattern":"[vulnerability:name = 'CVE-2026-33104']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-278/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0325-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-32073","pattern":"[vulnerability:name = 'CVE-2026-32073']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-277/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0326-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-26179","pattern":"[vulnerability:name = 'CVE-2026-26179']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-276/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0327-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5057","pattern":"[vulnerability:name = 'CVE-2026-5057']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-272/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0328-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5424","pattern":"[vulnerability:name = 'CVE-2026-5424']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-271/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0329-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-54987","pattern":"[vulnerability:name = 'CVE-2025-54987']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-270/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0330-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-54948","pattern":"[vulnerability:name = 'CVE-2025-54948']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-269/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0331-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25203","pattern":"[vulnerability:name = 'CVE-2026-25203']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-268/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0332-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-40688","pattern":"[vulnerability:name = 'CVE-2026-40688']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-266/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0333-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-39811","pattern":"[vulnerability:name = 'CVE-2026-39811']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-265/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0334-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-27305","pattern":"[vulnerability:name = 'CVE-2026-27305']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-264/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0335-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-27282","pattern":"[vulnerability:name = 'CVE-2026-27282']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-263/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0336-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-34619","pattern":"[vulnerability:name = 'CVE-2026-34619']","pattern_type":"stix","valid_from":"2026-04-15T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-262/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--63707569-0337-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"cpuid.com","pattern":"[domain-name:value = 'cpuid.com']","pattern_type":"stix","valid_from":"2026-04-14T22:59:27.000Z","labels":["domain","rss"],"external_references":[{"source_name":"SentinelOne Blog","url":"https://www.sentinelone.com/blog/securing-the-software-supply-chain-how-sentinelones-ai-edr-autonomously-blocked-the-cpu-z-watering-hole-cyber-attack/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0338-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5495","pattern":"[vulnerability:name = 'CVE-2026-5495']","pattern_type":"stix","valid_from":"2026-04-06T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-257/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0339-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5494","pattern":"[vulnerability:name = 'CVE-2026-5494']","pattern_type":"stix","valid_from":"2026-04-06T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-256/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0340-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5493","pattern":"[vulnerability:name = 'CVE-2026-5493']","pattern_type":"stix","valid_from":"2026-04-06T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-255/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0341-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5496","pattern":"[vulnerability:name = 'CVE-2026-5496']","pattern_type":"stix","valid_from":"2026-04-06T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-254/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0342-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-21518","pattern":"[vulnerability:name = 'CVE-2026-21518']","pattern_type":"stix","valid_from":"2026-04-02T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-253/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0343-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4698","pattern":"[vulnerability:name = 'CVE-2026-4698']","pattern_type":"stix","valid_from":"2026-04-02T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-252/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0344-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3775","pattern":"[vulnerability:name = 'CVE-2026-3775']","pattern_type":"stix","valid_from":"2026-04-02T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-251/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0345-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3502","pattern":"[vulnerability:name = 'CVE-2026-3502']","pattern_type":"stix","valid_from":"2026-03-31T13:16:50.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Check Point Research","url":"https://research.checkpoint.com/2026/operation-truechaos-0-day-exploitation-against-southeast-asian-government-targets/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0346-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-53521","pattern":"[vulnerability:name = 'CVE-2025-53521']","pattern_type":"stix","valid_from":"2026-03-31T08:45:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Infosecurity Magazine","url":"https://www.infosecurity-magazine.com/news/ncsc-urges-immediate-patching-f5/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0347-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23092","pattern":"[vulnerability:name = 'CVE-2026-23092']","pattern_type":"stix","valid_from":"2026-03-31T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-250/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0348-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3055","pattern":"[vulnerability:name = 'CVE-2026-3055']","pattern_type":"stix","valid_from":"2026-03-30T10:45:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Infosecurity Magazine","url":"https://www.infosecurity-magazine.com/news/critical-citrix-netscaler/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0349-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5055","pattern":"[vulnerability:name = 'CVE-2026-5055']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-249/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0350-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5054","pattern":"[vulnerability:name = 'CVE-2026-5054']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-248/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0351-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5053","pattern":"[vulnerability:name = 'CVE-2026-5053']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-247/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0352-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-5058","pattern":"[vulnerability:name = 'CVE-2026-5058']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-246/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0353-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-13088","pattern":"[vulnerability:name = 'CVE-2024-13088']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-244/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0354-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62842","pattern":"[vulnerability:name = 'CVE-2025-62842']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-243/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0355-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62840","pattern":"[vulnerability:name = 'CVE-2025-62840']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-242/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0356-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62846","pattern":"[vulnerability:name = 'CVE-2025-62846']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-241/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0357-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62845","pattern":"[vulnerability:name = 'CVE-2025-62845']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-240/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0358-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62844","pattern":"[vulnerability:name = 'CVE-2025-62844']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-239/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0359-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2023-6270","pattern":"[vulnerability:name = 'CVE-2023-6270']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-238/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0360-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62843","pattern":"[vulnerability:name = 'CVE-2025-62843']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-237/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0361-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0954","pattern":"[vulnerability:name = 'CVE-2026-0954']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-236/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0362-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0957","pattern":"[vulnerability:name = 'CVE-2026-0957']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-235/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0363-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0956","pattern":"[vulnerability:name = 'CVE-2026-0956']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-234/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0364-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-0955","pattern":"[vulnerability:name = 'CVE-2026-0955']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-233/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0365-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-40277","pattern":"[vulnerability:name = 'CVE-2025-40277']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-232/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0366-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20695","pattern":"[vulnerability:name = 'CVE-2026-20695']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-231/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0367-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20690","pattern":"[vulnerability:name = 'CVE-2026-20690']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-230/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0368-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3691","pattern":"[vulnerability:name = 'CVE-2026-3691']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-229/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0369-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3690","pattern":"[vulnerability:name = 'CVE-2026-3690']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-228/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0370-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3689","pattern":"[vulnerability:name = 'CVE-2026-3689']","pattern_type":"stix","valid_from":"2026-03-30T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-227/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--626f6f6b-0371-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"booking.com","pattern":"[domain-name:value = 'booking.com']","pattern_type":"stix","valid_from":"2026-03-25T00:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Recorded Future","url":"https://www.recordedfuture.com/research/clickfix-campaigns-targeting-windows-and-macos"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0372-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20131","pattern":"[vulnerability:name = 'CVE-2026-20131']","pattern_type":"stix","valid_from":"2026-03-23T10:30:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Infosecurity Magazine","url":"https://www.infosecurity-magazine.com/news/cisa-orders-us-government-patch/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0373-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-58487","pattern":"[vulnerability:name = 'CVE-2025-58487']","pattern_type":"stix","valid_from":"2026-03-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-225/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0374-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-58486","pattern":"[vulnerability:name = 'CVE-2025-58486']","pattern_type":"stix","valid_from":"2026-03-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-224/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0375-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-58488","pattern":"[vulnerability:name = 'CVE-2025-58488']","pattern_type":"stix","valid_from":"2026-03-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-223/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0376-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14233","pattern":"[vulnerability:name = 'CVE-2025-14233']","pattern_type":"stix","valid_from":"2026-03-23T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-222/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0377-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4154","pattern":"[vulnerability:name = 'CVE-2026-4154']","pattern_type":"stix","valid_from":"2026-03-19T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-221/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0378-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4153","pattern":"[vulnerability:name = 'CVE-2026-4153']","pattern_type":"stix","valid_from":"2026-03-19T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-220/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0379-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4152","pattern":"[vulnerability:name = 'CVE-2026-4152']","pattern_type":"stix","valid_from":"2026-03-19T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-219/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0380-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4151","pattern":"[vulnerability:name = 'CVE-2026-4151']","pattern_type":"stix","valid_from":"2026-03-19T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-218/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0381-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4150","pattern":"[vulnerability:name = 'CVE-2026-4150']","pattern_type":"stix","valid_from":"2026-03-19T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-217/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0382-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3888","pattern":"[vulnerability:name = 'CVE-2026-3888']","pattern_type":"stix","valid_from":"2026-03-18T15:45:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Infosecurity Magazine","url":"https://www.infosecurity-magazine.com/news/ubuntu-flaw-enables-root-access/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0383-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62847","pattern":"[vulnerability:name = 'CVE-2025-62847']","pattern_type":"stix","valid_from":"2026-03-17T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-216/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0384-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4158","pattern":"[vulnerability:name = 'CVE-2026-4158']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-215/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0385-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2049","pattern":"[vulnerability:name = 'CVE-2026-2049']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-214/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0386-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2046","pattern":"[vulnerability:name = 'CVE-2026-2046']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-213/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0387-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-13957","pattern":"[vulnerability:name = 'CVE-2025-13957']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-212/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0388-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-1361","pattern":"[vulnerability:name = 'CVE-2026-1361']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-211/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0389-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-21079","pattern":"[vulnerability:name = 'CVE-2025-21079']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-210/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0390-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-21079","pattern":"[vulnerability:name = 'CVE-2025-21079']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-209/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0391-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14237","pattern":"[vulnerability:name = 'CVE-2025-14237']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-208/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0392-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14236","pattern":"[vulnerability:name = 'CVE-2025-14236']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-207/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0393-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14235","pattern":"[vulnerability:name = 'CVE-2025-14235']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-206/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0394-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14234","pattern":"[vulnerability:name = 'CVE-2025-14234']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-205/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0395-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14232","pattern":"[vulnerability:name = 'CVE-2025-14232']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-204/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0396-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-14231","pattern":"[vulnerability:name = 'CVE-2025-14231']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-203/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0397-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-59389","pattern":"[vulnerability:name = 'CVE-2025-59389']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-202/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0398-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-59388","pattern":"[vulnerability:name = 'CVE-2025-59388']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-201/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0399-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62849","pattern":"[vulnerability:name = 'CVE-2025-62849']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-200/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0400-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62848","pattern":"[vulnerability:name = 'CVE-2025-62848']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-199/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0401-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-11837","pattern":"[vulnerability:name = 'CVE-2025-11837']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-198/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0402-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4157","pattern":"[vulnerability:name = 'CVE-2026-4157']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-197/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0403-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4156","pattern":"[vulnerability:name = 'CVE-2026-4156']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-196/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0404-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4155","pattern":"[vulnerability:name = 'CVE-2026-4155']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-195/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0405-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-21527","pattern":"[vulnerability:name = 'CVE-2026-21527']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-194/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0406-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2022-1972","pattern":"[vulnerability:name = 'CVE-2022-1972']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-193/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0407-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-4149","pattern":"[vulnerability:name = 'CVE-2026-4149']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-192/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0408-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2022-32250","pattern":"[vulnerability:name = 'CVE-2022-32250']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-191/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0409-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-41238","pattern":"[vulnerability:name = 'CVE-2025-41238']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-190/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0410-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-41236","pattern":"[vulnerability:name = 'CVE-2025-41236']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-189/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0411-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-41237","pattern":"[vulnerability:name = 'CVE-2025-41237']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-188/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0412-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2022-45188","pattern":"[vulnerability:name = 'CVE-2022-45188']","pattern_type":"stix","valid_from":"2026-03-16T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-187/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0413-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24018","pattern":"[vulnerability:name = 'CVE-2026-24018']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-186/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0414-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25181","pattern":"[vulnerability:name = 'CVE-2026-25181']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-185/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0415-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24289","pattern":"[vulnerability:name = 'CVE-2026-24289']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-184/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0416-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24285","pattern":"[vulnerability:name = 'CVE-2026-24285']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-183/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0417-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24285","pattern":"[vulnerability:name = 'CVE-2026-24285']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-182/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0418-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-24285","pattern":"[vulnerability:name = 'CVE-2026-24285']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-181/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0419-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23668","pattern":"[vulnerability:name = 'CVE-2026-23668']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-180/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0420-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23668","pattern":"[vulnerability:name = 'CVE-2026-23668']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-179/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0421-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23668","pattern":"[vulnerability:name = 'CVE-2026-23668']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-178/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0422-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-26364","pattern":"[vulnerability:name = 'CVE-2026-26364']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-177/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0423-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20616","pattern":"[vulnerability:name = 'CVE-2026-20616']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-176/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0424-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20634","pattern":"[vulnerability:name = 'CVE-2026-20634']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-175/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0425-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20675","pattern":"[vulnerability:name = 'CVE-2026-20675']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-174/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0426-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-20611","pattern":"[vulnerability:name = 'CVE-2026-20611']","pattern_type":"stix","valid_from":"2026-03-10T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-173/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0427-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3839","pattern":"[vulnerability:name = 'CVE-2026-3839']","pattern_type":"stix","valid_from":"2026-03-09T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-172/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0428-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3838","pattern":"[vulnerability:name = 'CVE-2026-3838']","pattern_type":"stix","valid_from":"2026-03-09T05:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-171/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0429-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3086","pattern":"[vulnerability:name = 'CVE-2026-3086']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-170/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0430-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3084","pattern":"[vulnerability:name = 'CVE-2026-3084']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-169/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0431-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2921","pattern":"[vulnerability:name = 'CVE-2026-2921']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-168/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0432-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3085","pattern":"[vulnerability:name = 'CVE-2026-3085']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-167/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0433-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3083","pattern":"[vulnerability:name = 'CVE-2026-3083']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-166/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0434-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2922","pattern":"[vulnerability:name = 'CVE-2026-2922']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-165/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0435-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2920","pattern":"[vulnerability:name = 'CVE-2026-2920']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-164/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0436-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3082","pattern":"[vulnerability:name = 'CVE-2026-3082']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-163/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0437-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3081","pattern":"[vulnerability:name = 'CVE-2026-3081']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-162/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0438-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2923","pattern":"[vulnerability:name = 'CVE-2026-2923']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-161/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0439-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3562","pattern":"[vulnerability:name = 'CVE-2026-3562']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-160/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0440-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3561","pattern":"[vulnerability:name = 'CVE-2026-3561']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-159/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0441-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3560","pattern":"[vulnerability:name = 'CVE-2026-3560']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-158/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0442-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3559","pattern":"[vulnerability:name = 'CVE-2026-3559']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-157/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0443-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3558","pattern":"[vulnerability:name = 'CVE-2026-3558']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-156/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0444-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3557","pattern":"[vulnerability:name = 'CVE-2026-3557']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-155/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0445-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3556","pattern":"[vulnerability:name = 'CVE-2026-3556']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-154/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0446-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3555","pattern":"[vulnerability:name = 'CVE-2026-3555']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-153/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0447-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-15558","pattern":"[vulnerability:name = 'CVE-2025-15558']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-152/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0448-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-3094","pattern":"[vulnerability:name = 'CVE-2026-3094']","pattern_type":"stix","valid_from":"2026-03-06T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-151/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0449-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-28400","pattern":"[vulnerability:name = 'CVE-2026-28400']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-150/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0450-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71218","pattern":"[vulnerability:name = 'CVE-2025-71218']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-149/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0451-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71209","pattern":"[vulnerability:name = 'CVE-2025-71209']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-148/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0452-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71208","pattern":"[vulnerability:name = 'CVE-2025-71208']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-147/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0453-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71207","pattern":"[vulnerability:name = 'CVE-2025-71207']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-146/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0454-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71206","pattern":"[vulnerability:name = 'CVE-2025-71206']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-145/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0455-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71205","pattern":"[vulnerability:name = 'CVE-2025-71205']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-144/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0456-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71217","pattern":"[vulnerability:name = 'CVE-2025-71217']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-143/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0457-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71216","pattern":"[vulnerability:name = 'CVE-2025-71216']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-142/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0458-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71215","pattern":"[vulnerability:name = 'CVE-2025-71215']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-141/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0459-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71213","pattern":"[vulnerability:name = 'CVE-2025-71213']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-140/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0460-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71214","pattern":"[vulnerability:name = 'CVE-2025-71214']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-139/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0461-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71212","pattern":"[vulnerability:name = 'CVE-2025-71212']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-138/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0462-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71211","pattern":"[vulnerability:name = 'CVE-2025-71211']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-137/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0463-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-71210","pattern":"[vulnerability:name = 'CVE-2025-71210']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-136/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0464-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-27794","pattern":"[vulnerability:name = 'CVE-2026-27794']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-135/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0465-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-23600","pattern":"[vulnerability:name = 'CVE-2026-23600']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-134/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0466-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-26975","pattern":"[vulnerability:name = 'CVE-2026-26975']","pattern_type":"stix","valid_from":"2026-03-03T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-133/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0467-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25656","pattern":"[vulnerability:name = 'CVE-2026-25656']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-132/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0468-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-25655","pattern":"[vulnerability:name = 'CVE-2026-25655']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-131/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0469-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2493","pattern":"[vulnerability:name = 'CVE-2026-2493']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-130/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0470-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2491","pattern":"[vulnerability:name = 'CVE-2026-2491']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-129/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0471-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-21634","pattern":"[vulnerability:name = 'CVE-2026-21634']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-128/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0472-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-21633","pattern":"[vulnerability:name = 'CVE-2026-21633']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-127/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0473-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-21633","pattern":"[vulnerability:name = 'CVE-2026-21633']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-126/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0474-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2664","pattern":"[vulnerability:name = 'CVE-2026-2664']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-125/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0475-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-15060","pattern":"[vulnerability:name = 'CVE-2025-15060']","pattern_type":"stix","valid_from":"2026-02-25T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-124/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0476-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2040","pattern":"[vulnerability:name = 'CVE-2026-2040']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-122/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0477-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2048","pattern":"[vulnerability:name = 'CVE-2026-2048']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-121/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0478-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2047","pattern":"[vulnerability:name = 'CVE-2026-2047']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-120/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0479-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2045","pattern":"[vulnerability:name = 'CVE-2026-2045']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-119/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0480-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2044","pattern":"[vulnerability:name = 'CVE-2026-2044']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-118/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0481-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2490","pattern":"[vulnerability:name = 'CVE-2026-2490']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-117/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0482-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2492","pattern":"[vulnerability:name = 'CVE-2026-2492']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-116/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0483-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-62676","pattern":"[vulnerability:name = 'CVE-2025-62676']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-115/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0484-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-1335","pattern":"[vulnerability:name = 'CVE-2026-1335']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-114/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0485-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-1334","pattern":"[vulnerability:name = 'CVE-2026-1334']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-113/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0486-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-1333","pattern":"[vulnerability:name = 'CVE-2026-1333']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-112/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0487-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-2635","pattern":"[vulnerability:name = 'CVE-2026-2635']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-111/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0488-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-60037","pattern":"[vulnerability:name = 'CVE-2025-60037']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-110/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0489-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-60038","pattern":"[vulnerability:name = 'CVE-2025-60038']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-110/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0490-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-60035","pattern":"[vulnerability:name = 'CVE-2025-60035']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-109/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0491-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-60036","pattern":"[vulnerability:name = 'CVE-2025-60036']","pattern_type":"stix","valid_from":"2026-02-19T06:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Zero Day Initiative","url":"http://www.zerodayinitiative.com/advisories/ZDI-26-108/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0492-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2026-22769","pattern":"[vulnerability:name = 'CVE-2026-22769']","pattern_type":"stix","valid_from":"2026-02-17T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Mandiant Blog","url":"https://cloud.google.com/blog/topics/threat-intelligence/unc6201-exploiting-dell-recoverpoint-zero-day/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0493-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2018-0802","pattern":"[vulnerability:name = 'CVE-2018-0802']","pattern_type":"stix","valid_from":"2026-02-10T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Fortinet Blog","url":"https://feeds.fortinet.com/~/945702296/0/fortinet/blog/threat-research~Deep-Dive-into-New-XWorm-Campaign-Utilizing-MultipleThemed-Phishing-Emails"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0494-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2024-54529","pattern":"[vulnerability:name = 'CVE-2024-54529']","pattern_type":"stix","valid_from":"2026-01-29T23:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Google Project Zero","url":"https://projectzero.google/2026/01/sound-barrier-2.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0495-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-31235","pattern":"[vulnerability:name = 'CVE-2025-31235']","pattern_type":"stix","valid_from":"2026-01-29T23:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Google Project Zero","url":"https://projectzero.google/2026/01/sound-barrier-2.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0496-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-64328","pattern":"[vulnerability:name = 'CVE-2025-64328']","pattern_type":"stix","valid_from":"2026-01-28T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Fortinet Blog","url":"https://feeds.fortinet.com/~/943094408/0/fortinet/blog/threat-research~Unveiling-the-Weaponized-Web-Shell-EncystPHP"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0497-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-8088","pattern":"[vulnerability:name = 'CVE-2025-8088']","pattern_type":"stix","valid_from":"2026-01-27T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Mandiant Blog","url":"https://cloud.google.com/blog/topics/threat-intelligence/exploiting-critical-winrar-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0498-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2017-11882","pattern":"[vulnerability:name = 'CVE-2017-11882']","pattern_type":"stix","valid_from":"2026-01-14T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Fortinet Blog","url":"https://feeds.fortinet.com/~/940295429/0/fortinet/blog/threat-research~New-Remcos-Campaign-Distributed-Through-Fake-Shipping-Document"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0499-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-55182","pattern":"[vulnerability:name = 'CVE-2025-55182']","pattern_type":"stix","valid_from":"2026-01-13T00:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Recorded Future","url":"https://www.recordedfuture.com/blog/december-2025-cve-landscape"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0500-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-50165","pattern":"[vulnerability:name = 'CVE-2025-50165']","pattern_type":"stix","valid_from":"2025-12-22T09:55:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"ESET Research","url":"https://www.welivesecurity.com/en/eset-research/revisiting-cve-2025-50165-critical-flaw-windows-imaging-component/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0501-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2017-3558","pattern":"[vulnerability:name = 'CVE-2017-3558']","pattern_type":"stix","valid_from":"2025-12-16T09:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Google Project Zero","url":"https://projectzero.google/2025/12/thinking-outside-the-box.html"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0502-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-12480","pattern":"[vulnerability:name = 'CVE-2025-12480']","pattern_type":"stix","valid_from":"2025-11-10T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Mandiant Blog","url":"https://cloud.google.com/blog/topics/threat-intelligence/triofox-vulnerability-cve-2025-12480/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0503-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-61884","pattern":"[vulnerability:name = 'CVE-2025-61884']","pattern_type":"stix","valid_from":"2025-10-09T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Mandiant Blog","url":"https://cloud.google.com/blog/topics/threat-intelligence/oracle-ebusiness-suite-zero-day-exploitation/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--6173702e-0504-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"asp.net","pattern":"[domain-name:value = 'asp.net']","pattern_type":"stix","valid_from":"2025-09-03T14:00:00.000Z","labels":["domain","rss"],"external_references":[{"source_name":"Mandiant Blog","url":"https://cloud.google.com/blog/topics/threat-intelligence/viewstate-deserialization-zero-day-vulnerability/"}]},{"type":"indicator","spec_version":"2.1","id":"indicator--4356452d-0505-0000-0000-000000000000","created":"2026-05-25T00:29:50.716Z","modified":"2026-05-25T00:29:50.716Z","name":"CVE-2025-53690","pattern":"[vulnerability:name = 'CVE-2025-53690']","pattern_type":"stix","valid_from":"2025-09-03T14:00:00.000Z","labels":["cve","rss"],"external_references":[{"source_name":"Mandiant Blog","url":"https://cloud.google.com/blog/topics/threat-intelligence/viewstate-deserialization-zero-day-vulnerability/"}]}]}