Indicators of Compromise

Tenable Blog 📡 RSS May 15

Frequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN vulnerabilities (CVE-2026-20182)

CVEs: CVE-2026-20182

Tenable Blog →

SC Media 📡 RSS May 14

Two vulnerabilities found in popular WordPress plugin Avada Builder

CVEs: CVE-2026-4782 CVE-2026-4798

SC Media →

CSO Online 📡 RSS May 14

AI agent finds 18-year-old remote code execution flaw in Nginx

CVEs: CVE-2026-42945

CSO Online →

BleepingComputer 📡 RSS May 14

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

CVEs: CVE-2026-20182

BleepingComputer →

Tenable Blog 📡 RSS May 14

Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation

CVEs: CVE-2026-46300

Tenable Blog →

Rapid7 Blog 📡 RSS May 14

CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS

CVEs: CVE-2026-0265

Rapid7 Blog →

Security Affairs 📡 RSS May 14

U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog

CVEs: CVE-2026-20182

Security Affairs →

Security Affairs 📡 RSS May 14

Linux Kernel bug Fragnesia allows local root access attacks

CVEs: CVE-2026-46300

Security Affairs →

The Hacker News 📡 RSS May 14

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access

CVEs: CVE-2026-20182

The Hacker News →

Rapid7 Blog 📡 RSS May 14

CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED)

CVEs: CVE-2026-20182 CVE-2026-20127

Rapid7 Blog →

Security Affairs 📡 RSS May 14

Broadcom releases VMware Fusion security update for root access bug

CVEs: CVE-2026-41702

Security Affairs →

SC Media 📡 RSS May 14

Critical Quest KACE SMA flaw exploited after 10 months

CVEs: CVE-2025-32975

SC Media →

Help Net Security 📡 RSS May 14

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)

CVEs: CVE-2026-46300 CVE-2026-43284

Help Net Security →

SecurityWeek 📡 RSS May 14

New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation

CVEs: CVE-2026-46300

SecurityWeek →

Security Affairs 📡 RSS May 14

NGINX Rift: an 18-year-old flaw in the world’s most deployed web server just came to light

CVEs: CVE-2026-42945

Security Affairs →

GBHackers 📡 RSS May 14

Critical WordPress Plugin Flaw Allows Unauthorized Access to Websites

CVEs: CVE-2026-8181

GBHackers →

GBHackers 📡 RSS May 14

Windows DNS Client Security Flaw Exposes Systems to Remote Code Execution

CVEs: CVE-2026-41096

GBHackers →

CISA Advisories 📡 RSS May 14

Siemens Teamcenter

CVEs: CVE-2026-33862 CVE-2026-33893 CVE-2024-4367

CISA Advisories →

CISA Advisories 📡 RSS May 14

CISA Adds One Known Exploited Vulnerability to Catalog

CVEs: CVE-2026-20182

CISA Advisories →

GBHackers 📡 RSS May 14

Critical Exim Mailer Flaw Enables Remote Code Execution Attacks

CVEs: CVE-2026-45185

GBHackers →