PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
CVEs:
CVE-2026-44338
Indicators of Compromise
460 articles containing extracted IOCs (CVEs, IPs, hashes, domains, URLs, emails)
Langflow CVE-2026-33017 Exploited to Steal AWS Keys, Deploy NATS Worker
CVEs:
CVE-2026-33017
New Fragnesia Linux flaw lets attackers gain root privileges
CVEs:
CVE-2026-46300
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption
CVEs:
CVE-2026-46300
MongoDB Security Flaw Enables Arbitrary Code Execution on Vulnerable Systems
CVEs:
CVE-2026-8053
18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE
CVEs:
CVE-2026-42945
ISC Stormcast For Thursday, May 14th, 2026 https://isc.sans.edu/podcastdetail/9932, (Thu, May 14th)
Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations
CVEs:
CVE-2025-32975
Fortinet addresses critical vulnerabilities in FortiSandbox and FortiAuthenticator
CVEs:
CVE-2026-44277
Microsoft’s agentic AI system found four critical Windows RCE flaws
CVEs:
CVE-2026-40361
CVE-2026-40364
Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises
CVEs:
CVE-2026-40361
A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
CVEs:
CVE-2025-54957
Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator
CVEs:
CVE-2026-44277
Der Kaufratgeber für Breach & Attack Simulation Tools
Domains:
shutterstock.com
ISC Stormcast For Wednesday, May 13th, 2026 https://isc.sans.edu/podcastdetail/9930, (Wed, May 13th)
Patch Tuesday - May 2026
CVEs:
CVE-2026-41089
Microsoft May 2026 Patch Tuesday: Many fixes, but no zero-days
CVEs:
CVE-2026-40361
CVE-2026-40364
Microsoft’s May 2026 Patch Tuesday Addresses 118 CVEs (CVE-2026-41103)
CVEs:
CVE-2026-41103
CVE-2025-54518
Domains:
asp.net
New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution
CVEs:
CVE-2026-45185
Stealthy hackers exploit cPanel flaw in active backdoor campaign (CVE-2026-41940)
CVEs:
CVE-2026-41940