Indicators of Compromise

Security Affairs 📡 RSS May 15

CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day

CVEs: CVE-2026-42897

Security Affairs →

SC Media 📡 RSS May 15

Critical vulnerability in Burst Statistics plugin allows admin takeover

CVEs: CVE-2026-8181

SC Media →

GBHackers 📡 RSS May 15

VMware Fusion Flaw Could Allow Attackers to Gain Root Privileges

CVEs: CVE-2026-41702

GBHackers →

Help Net Security 📡 RSS May 15

Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182)

CVEs: CVE-2026-20182

Help Net Security →

SecurityWeek 📡 RSS May 15

Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild

CVEs: CVE-2026-42897

SecurityWeek →

GBHackers 📡 RSS May 15

PraisonAI Vulnerability Actively Exploited Within Hours of Being Made Public

CVEs: CVE-2026-44338

GBHackers →

Help Net Security 📡 RSS May 15

Unpatched Microsoft Exchange Server vulnerability exploited (CVE-2026-42897)

CVEs: CVE-2026-42897

Help Net Security →

GBHackers 📡 RSS May 15

Amazon Redshift JDBC Driver Flaws Expose Systems to RCE Attacks

CVEs: CVE-2026-8178

GBHackers →

GBHackers 📡 RSS May 15

Cisco Catalyst SD-WAN Controller Flaw Under Active Exploitation for Admin Access

CVEs: CVE-2026-20182

GBHackers →

SecurityWeek 📡 RSS May 15

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026

CVEs: CVE-2026-20182

SecurityWeek →

GBHackers 📡 RSS May 15

Next.js Security Flaw Leaks Cloud Credentials, API Keys, and Admin Interfaces

CVEs: CVE-2026-44578

GBHackers →

The Hacker News 📡 RSS May 15

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

CVEs: CVE-2026-42897

The Hacker News →

The Hacker News 📡 RSS May 15

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

CVEs: CVE-2026-20182

The Hacker News →

GBHackers 📡 RSS May 15

Palo Alto Firewalls Hit by Zero-Day Allowing Arbitrary Code Execution as Root

CVEs: CVE-2026-0300

GBHackers →

SANS ISC 📡 RSS May 15

ISC Stormcast For Friday, May 15th, 2026 https://isc.sans.edu/podcastdetail/9934, (Fri, May 15th)

SANS ISC →

Tenable Blog 📡 RSS May 15

Frequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN vulnerabilities (CVE-2026-20182)

CVEs: CVE-2026-20182

Tenable Blog →

SC Media 📡 RSS May 14

Two vulnerabilities found in popular WordPress plugin Avada Builder

CVEs: CVE-2026-4782 CVE-2026-4798

SC Media →

CSO Online 📡 RSS May 14

AI agent finds 18-year-old remote code execution flaw in Nginx

CVEs: CVE-2026-42945

CSO Online →

BleepingComputer 📡 RSS May 14

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

CVEs: CVE-2026-20182

BleepingComputer →

Tenable Blog 📡 RSS May 14

Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation

CVEs: CVE-2026-46300

Tenable Blog →