CVEs connected to the stories shaping the security landscape.

Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Adds Two Known Exploited Vulnerabilities to Catalog

Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw

CVE-2026-45498 Microsoft Defender Denial of Service Vulnerability

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

CVE-2026-41091 Microsoft Defender Elevation of Privilege Vulnerability

AI Cisco released updates for an actively exploited medium-severity flaw in Catalyst SD-WAN Manager, tracked as CVE-2026-20262 with a CVSS score of 6.5.

CISA Adds One Known Exploited Vulnerability to Catalog

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities

AI CISA added three vulnerabilities to its Known Exploited Vulnerabilities catalog, including a Chromium V8 out-of-bounds memory access (CVE-2026-11645) and an Arista EOS incomplete comparison flaw (CVE-2026-7473).

AI CISA added three vulnerabilities to its Known Exploited Vulnerabilities catalog, including a Chromium V8 out-of-bounds memory access (CVE-2026-11645) and an Arista EOS incomplete comparison flaw (CVE-2026-7473).

Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week

Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week

CVE-2024-30896 InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and Clustered are not affected. NOTE: The researcher states that InfluxDB allows allAccess administrators to retrieve all raw tokens via an "influx auth ls" command. The supplier indicates that the organizations feature is operating as intended and that users may choose to add users to non-default organizations. A future release of InfluxDB 2.x will remove the ability to retrieve tokens from the API.

CVE-2023-5678 Excessive time spent in DH check / generation with large Q parameter value

CVE-2026-47291 HTTP.sys Remote Code Execution Vulnerability

CVE-2024-43582 Remote Desktop Protocol Server Remote Code Execution Vulnerability

Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week

CVE-2024-49075 Windows Remote Desktop Services Denial of Service Vulnerability

CVE-2026-42989 Winlogon Elevation of Privilege Vulnerability

CVE-2026-42980 NT OS Kernel Elevation of Privilege Vulnerability

CVE-2023-27043 The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.

CVE-2026-11526 GD versions before 2.86 for Perl allow OS command injection and file overwrite via a 2-arg open() of filename arguments in _make_filehandle

CVE-2019-11254 Kubernetes API Server denial of service vulnerability from malicious YAML payloads

CVE-2026-45586 Windows Collaborative Translation Framework (CTFMON) Elevation of Privilege Vulnerability

CVE-2020-8561 Webhook redirect in kube-apiserver

CVE-2013-1633 easy_install in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to the default use of the product.

CVE-2025-21330 Windows Remote Desktop Services Denial of Service Vulnerability

CVE-2021-25740 Holes in EndpointSlice Validation Enable Host Network Hijack

CVE-2026-45659 Microsoft SharePoint Remote Code Execution Vulnerability

CVE-2026-3593 Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation

CVE-2026-42905 Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2026-42986 Microsoft Graphics Component Elevation of Privilege Vulnerability

CVE-2026-46300 net: skbuff: preserve shared-frag marker during coalescing

CVE-2026-45484 Microsoft SharePoint Elevation of Privilege Vulnerability

CVE-2026-45447 Heap Use-After-Free in the PKCS7_verify() Function

CVE-2026-9256 NGINX ngx_http_rewrite_module vulnerability

CVE-2026-20846 GDI+ Denial of Service Vulnerability

CVE-2026-49975 Apache HTTP Server: mod_http2 denial of service

CVE-2020-17103 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2026-5947 SIG(0) validation during query flood may lead to undefined behavior

CVE-2026-26142 Nuance PowerScribe Remote Code Execution Vulnerability

CVE-2026-47783 In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid username is found by sasl_server_userdb_checkpass.

CVE-2026-42835 Microsoft Teams for Android Information Disclosure Vulnerability

CVE-2024-49123 Windows Remote Desktop Services Remote Code Execution Vulnerability

CVE-2024-49132 Windows Remote Desktop Services Remote Code Execution Vulnerability

CVE-2026-33846 Gnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fragment reassembly

CVE-2026-49160 HTTP.sys Denial of Service Vulnerability

CVE-2026-45454 Microsoft SharePoint Remote Code Execution Vulnerability

CVE-2026-8711 NGINX JavaScript vulnerability

CVE-2026-33278 Possible arbitrary code execution during DNSSEC validation

CVE-2026-45584 Microsoft Defender Remote Code Execution Vulnerability

CVE-2026-48573 Secure Boot Security Feature Bypass Vulnerability

CVE-2026-48576 Secure Boot Security Feature Bypass Vulnerability

CVE-2026-42009 Gnutls: gnutls: denial of service via dtls packet reordering vulnerability

CVE-2024-58266 The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.

CVE-2026-5260 Gnutls: gnutls: information disclosure via heap overread in rsa key exchange

CVE-2026-45591 ASP.NET Core Denial of Service Vulnerability

CVE-2026-42015 Gnutls: gnutls: memory corruption due to off-by-one error in pkcs#12 bag handling

AI F5 patches two critical NGINX Open Source flaws (CVE-2026-42530, CVSS 9.2) enabling remote code execution. Apply updates promptly.

CVE-2026-48560 Microsoft SharePoint Server Spoofing Vulnerability

CVE-2026-34356 Apache HTTP Server: ProxyPassReverseCookieMap buffer overflow

CVE-2026-42914 Windows Kerberos Denial of Service Vulnerability

CVE-2026-41098 Azure Stack Edge Spoofing Vulnerability

CVE-2026-42903 Windows Kerberos Denial of Service Vulnerability

CVE-2026-29167 Apache HTTP Server: mod_ldap per-dir use-after-free

CVE-2026-45639 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

CVE-2026-42908 Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

CVE-2026-42764 NULL Pointer Dereference in QUIC Server Initial Packet Handling

CVE-2026-42907 Windows Shell Information Disclosure Vulnerability

CVE-2025-29923 go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment

CVE-2025-1180 GNU Binutils ld elf-eh-frame.c _bfd_elf_write_section_eh_frame memory corruption

CVE-2026-43618 Rsync < 3.4.3 Integer Overflow Information Disclosure

CVE-2026-47294 Microsoft SharePoint Server Remote Code Execution Vulnerability

CVE-2026-45495 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

CVE-2026-4224 Stack overflow parsing XML with deeply nested DTD content models

CVE-2026-7774 tarfile.data_filter path traversal bypass allows writing outside the extraction directory

CVE-2026-44186 Apache HTTP Server: Loop in `proxy_ftp_handler` in mod_proxy_ftp

CVE-2026-45859 netfilter: nfnetlink_queue: do shared-unconfirmed check before segmentation

CVE-2026-40376 Visual Studio Code Elevation of Privilege Vulnerability

CVE-2026-47284 Visual Studio Code Information Disclosure Vulnerability

CVE-2026-42766 Possible NULL Dereference in Password-Based CMS Decryption

CVE-2026-34355 Apache HTTP Server: mod_proxy_html buffer overflow

CVE-2026-46133 RDMA/rxe: Reject unknown opcodes before ICRC processing

CVE-2026-29170 Apache HTTP Server: mod_proxy_ftp XSS

CVE-2026-42535 Apache HTTP Server: mod_dav_fs protected directory access

CVE-2026-45657 Windows Kernel Remote Code Execution Vulnerability

CVE-2025-61725 Excessive CPU consumption in ParseAddress in net/mail

CVE-2026-48579 Microsoft Exchange Online Information Disclosure Vulnerability

CVE-2026-44815 DHCP Client Service Remote Code Execution Vulnerability

CVE-2025-1152 GNU Binutils ld xstrdup.c xstrdup memory leak

CVE-2025-1150 GNU Binutils ld libbfd.c bfd_malloc memory leak

CVE-2025-1151 GNU Binutils ld xmemdup.c xmemdup memory leak

CVE-2026-3039 BIND 9 server memory exhaustion during GSS-API TKEY negotiation

CVE-2025-51480 Path Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.

CVE-2026-47655 Microsoft Graph Information Disclosure Vulnerability

CVE-2026-47784 In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_userdb_checkpass.

CVE-2026-45648 Windows Active Directory Domain Services Remote Code Execution Vulnerability

CVE-2026-7374 Kubevirt: kubevirt virt-handler: privilege escalation and node compromise via symlink following vulnerability

CVE-2026-43493 crypto: pcrypt - Fix handling of MAY_BACKLOG requests

CVE-2026-34183 Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler

CVE-2025-1149 GNU Binutils ld xmalloc.c xstrdup memory leak

CVE-2026-46119 libceph: Fix slab-out-of-bounds access in auth message processing

CVE-2026-46177 ipmi: Add limits to event and receive message requests

CVE-2026-43951 Apache HTTP Server: OOB Read in `merge_response_headers` can cause crash

CVE-2026-42981 Windows Performance Monitor Remote Code Execution Vulnerability

CVE-2026-42974 Windows Performance Monitor Remote Code Execution Vulnerability

CVE-2026-46043 RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv

CVE-2026-46185 smb/client: fix out-of-bounds read in symlink_data()

CVE-2026-5419 Guntls: gnutls: information disclosure via timing side-channel in pkcs#7 padding removal

CVE-2026-41401 libyang - Heap Use-After-Free Write in XML Metadata Parsing

CVE-2026-42915 Windows TCP/IP Denial of Service Vulnerability

CVE-2026-34180 Heap Buffer Over-read in ASN.1 Content Parsing

CVE-2026-42959 Crash during DNSSEC validation of malicious content

CVE-2026-43970 Decompression Bomb in cow_spdy:inflate/2 Allows Memory Exhaustion via Crafted SPDY Frame

CVE-2026-42944 Heap overflow with multiple NSID, COOKIE, PADDING EDNS options

CVE-2026-47287 Visual Studio Code Tampering Vulnerability

CVE-2026-46102 net: strparser: fix skb_head leak in strp_abort_strp()

CVE-2026-46027 net/smc: avoid early lgr access in smc_clc_wait_msg

CVE-2026-40371 Microsoft Dynamics 365 (on-premises) Elevation of Privilege Vulnerability

CVE-2026-44631 Apache HTTP Server: Heap Underflow in `ap_regname` via Signed Char Overflow

CVE-2026-41184 ServiceAccount token disclosure via install-cni container logs

CVE-2026-5950 Unbounded resend loop in BIND 9 resolver

CVE-2023-6606 Kernel: out-of-bounds read vulnerability in smbcalcsize

CVE-2026-47643 Azure Stack Edge Remote Code Execution Vulnerability

CVE-2026-42824 M365 Copilot Information Disclosure Vulnerability

CVE-2026-47644 Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability

CVE-2026-43620 Rsync < 3.4.3 Out-of-Bounds Array Read via recv_files()

CVE-2025-58186 Lack of limit when parsing cookies can cause memory exhaustion in net/http

CVE-2026-42536 Apache HTTP Server: mod_xml2enc heap overflow

CVE-2026-35429 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability

CVE-2026-46115 block: add pgmap check to biovec_phys_mergeable

CVE-2026-46195 smb: client: validate dacloffset before building DACL pointers

CVE-2026-46137 mptcp: pm: ADD_ADDR rtx: fix potential data-race

CVE-2026-47298 Microsoft SharePoint Server Remote Code Execution Vulnerability

CVE-2026-48567 Azure HorizonDB Elevation of Privilege Vulnerability

CVE-2026-46024 libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply()

CVE-2026-44705 tmp: Path Traversal via unsanitized prefix/postfix enables directory escape

CVE-2026-5946 Invalid handling of CLASS != IN

CVE-2026-45455 Microsoft Excel Information Disclosure Vulnerability

CVE-2025-61724 Excessive CPU consumption in Reader.ReadResponse in net/textproto

CVE-2026-42985 Remote Desktop Client Remote Code Execution Vulnerability

CVE-2026-45650 Microsoft Bing Search Spoofing Vulnerability

CVE-2026-46155 smb/client: fix out-of-bounds read in smb2_compound_op()

CVE-2026-45481 Microsoft SharePoint Server Spoofing Vulnerability

CVE-2026-8376 Perl versions through 5.43.10 have a heap buffer overflow when compiling regular expressions with a repeated fixed string on 32-bit builds

CVE-2026-50508 Windows NTLM Spoofing Vulnerability

CVE-2026-48913 Apache HTTP Server: mod_http2 memory corruption when file handles exhausted

CVE-2026-3276 Potential DoS via quadratic complexity in unicodedata.normalize()