CISA KEV Archives • Daily CyberSecurity

Cisco Unified CM RCE Flaw Exploited in the Wild as PoC Code Goes Public Cisco Unified CM RCE flaw CVE-2026-20230 exploited in the wild with public PoC exploit code

Cisco Unified CM RCE flaw CVE-2026-20230 exploited in the wild with public PoC exploit code

Cisco Unified CM RCE Flaw Exploited in the Wild as PoC Code Goes Public

Do Son June 29, 2026

TL;DR Attackers are exploiting a Cisco Unified CM RCE flaw in live attacks. Tracked as CVE-2026-20230, it...

Weekly CVE Report Logs 1,909 New Vulnerabilities and 6 Exploited Flaws Weekly CVE report June 2026 1909 new vulnerabilities CISA KEV CVE-2026-20230 exploited

Weekly CVE report June 2026 1909 new vulnerabilities CISA KEV CVE-2026-20230 exploited

Weekly CVE Report Logs 1,909 New Vulnerabilities and 6 Exploited Flaws

Do Son June 29, 2026

TL;DR This weekly CVE report covers 1,909 new vulnerabilities published between June 22 and 28, 2026. Critical...

CISA Adds Cisco Unified CM and PTC Windchill Flaws to KEV Catalog CISA KEV Catalog adding CVE-2026-20230 Cisco Unified CM and CVE-2026-12569 PTC Windchill vulnerabilities

CISA KEV Catalog adding CVE-2026-20230 Cisco Unified CM and CVE-2026-12569 PTC Windchill vulnerabilities

CISA Adds Cisco Unified CM and PTC Windchill Flaws to KEV Catalog

Do Son June 26, 2026

TL;DR The CISA KEV Catalog gained two new entries on June 25, 2026. Both additions cite evidence...

CISA Adds Four Exploited UniFi OS and Lantronix Flaws to KEV Catalog CISA KEV catalog actively exploited vulnerabilities CVE-2026-34908 UniFi OS Lantronix EDS5000

CISA KEV catalog actively exploited vulnerabilities CVE-2026-34908 UniFi OS Lantronix EDS5000

CISA Adds Four Exploited UniFi OS and Lantronix Flaws to KEV Catalog

Do Son June 23, 2026

TL;DR CISA added four actively exploited flaws to its KEV catalog on June 23, 2026. The bugs...

2,060 New CVEs and 4 Actively Exploited Flaws (June 15-21, 2026) Weekly CVE report dashboard showing 2,060 new vulnerabilities and 4 actively exploited CVEs in CISA KEV

Weekly CVE report dashboard showing 2,060 new vulnerabilities and 4 actively exploited CVEs in CISA KEV

2,060 New CVEs and 4 Actively Exploited Flaws (June 15-21, 2026)

Do Son June 22, 2026

TL;DR This weekly CVE report covers 2,060 new vulnerabilities disclosed between June 15 and 21, 2026. Among...

AI Drives 2026 Vulnerability Forecast to 66K CVEs, But Risk Stays Flat 2026 vulnerability forecast chart showing AI vulnerability discovery driving CVE growth

2026 vulnerability forecast chart showing AI vulnerability discovery driving CVE growth

AI Drives 2026 Vulnerability Forecast to 66K CVEs, But Risk Stays Flat

Do Son June 18, 2026

The numbers look alarming at first glance. According to the 2026 vulnerability forecast from the Forum of...

Weekly Threat Intelligence: June 8 to June 14, 2026 Vulnerability Management Report Weekly Threat Intelligence

Weekly Threat Intelligence: June 8 to June 14, 2026

Do Son June 15, 2026

Welcome to the CVE WATCHTOWER. As your premier source for weekly threat intelligence, we are tracking an...

CISA Expands Active Exploit Catalog with Cisco, Arista, and Chromium Flaws CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA Expands Active Exploit Catalog with Cisco, Arista, and Chromium Flaws

Do Son June 10, 2026

Federal Registry Alerts Enterprise Teams to Real-World Infiltration Risks The Cybersecurity and Infrastructure Security Agency updated its...

CISA Active Exploit Catalog Expands with Critical Gateway Flaws CISA active exploit catalog critical gateway flaws CVE-2023-27532 & CVE-2024-37383

CISA active exploit catalog critical gateway flaws CVE-2023-27532 & CVE-2024-37383

CISA Active Exploit Catalog Expands with Critical Gateway Flaws

Do Son June 9, 2026

Federal Registry Alerts Organizations to Real-World Cyber Risks The Cybersecurity and Infrastructure Security Agency updated its primary...

Weekly Threat Intelligence: June 1 to June 7, 2026 Weekly Threat Intelligence Vulnerability Management Report

Weekly Threat Intelligence: June 1 to June 7, 2026

Do Son June 8, 2026

Welcome to your latest weekly threat intelligence briefing. The global cybersecurity landscape remains highly volatile as we...

CISA Warns of Actively Exploited SolarWinds Serv-U Flaw CVE-2024-28991 & CVE-2024-28990 SolarWinds RCE vulnerability CVE-2025-26399

CISA Warns of Actively Exploited SolarWinds Serv-U Flaw

Do Son June 6, 2026

Severe Infrastructure Exposure Discovered The Cybersecurity and Infrastructure Security Agency (CISA) recently added a new threat to...

actively exploited vulnerabilities Android privilege escalation flaw DELMIA Apriso RCE, CISA KEV Exploitation ServiceNow Vulnerabilities

Actively Exploited Vulnerabilities Added to CISA KEV Catalog

Do Son June 3, 2026

The Cybersecurity and Infrastructure Security Agency recently expanded its primary tracking catalog. Specifically, the organization added two...

Weekly Threat Intelligence: May 25 to May 31, 2026 Weekly Threat Intelligence Active Vulnerability Report

Weekly Threat Intelligence: May 25 to May 31, 2026

Do Son June 1, 2026

Welcome to your weekly threat intelligence briefing. The cybersecurity landscape shifted dramatically between May 25 and May...

The Zero-Day Dispatch: Weekly Threat Intelligence Briefing (May 18 – May 24, 2026)

Do Son May 25, 2026

Welcome to your weekly threat intelligence briefing. Between May 18 and May 24, 2026, security teams faced...

CISA Sound the Alarm: Langflow AI Platform and Trend Micro Added to KEV Catalog Due to Active Exploitation CISA KEV Catalog Updates Langflow CVE-2025-34291 Exploit SharePoint Spoofing CISA KEV Catalog Actively Exploited Vulnerability

CISA KEV Catalog Updates Langflow CVE-2025-34291 Exploit SharePoint Spoofing CISA KEV Catalog Actively Exploited Vulnerability

CISA Sound the Alarm: Langflow AI Platform and Trend Micro Added to KEV Catalog Due to Active Exploitation

Do Son May 21, 2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two newly weaponized security vulnerabilities to its...

SaaS-Style Cybercrime: Attackers Weaponize Langflow RCE and NATS Messaging for Ultra-Scalable C2 NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

NATS-as-C2 Sysdig CVE-2026-33017 Langflow RCE Microsoft Phone Link Hijack CloudZ Pheno Plugin Insider Threat BlackCat (ALPHV) OFAC Sanctions DPRK IT Workers Transparent Tribe APT36 React2Shell, EtherRAT SideWinder Espionage, Netlify Phishing DDNS Abuse, C2 Infrastructure Hacking Health Club

SaaS-Style Cybercrime: Attackers Weaponize Langflow RCE and NATS Messaging for Ultra-Scalable C2

Do Son May 18, 2026

A sophisticated new command-and-control (C2) technique has emerged, revealing threat actors who operate more like modern SaaS...

The CVE Watchtower: Weekly Threat Intelligence Briefing (May 11 – May 17, 2026)

Do Son May 18, 2026

Welcome to your weekly vulnerability digest. If your security dashboards have been flashing red, your telemetry is...

The CVE Watchtower: Weekly Threat Intelligence Briefing (May 4 – May 10, 2026) Weekly vulnerability digest May 2026

The CVE Watchtower: Weekly Threat Intelligence Briefing (May 4 – May 10, 2026)

Do Son May 11, 2026

Welcome to your weekly vulnerability digest. If you thought the threat landscape was plateauing as we entered...

The CVE Watchtower: Weekly Threat Intelligence Briefing (April 27 – May 3, 2026) cPanel Authentication Bypass Architectural Mismatch

The CVE Watchtower: Weekly Threat Intelligence Briefing (April 27 – May 3, 2026)

Do Son May 4, 2026

Welcome to your weekly vulnerability digest. As we transition from April to May, attackers are weaponizing critical...

Active In-The-Wild Exploit: “Copy Fail” Grants Root Privileges on Millions of Linux Systems Copy Fail CVE-2026-31431 Linux Root Privilege Exploit

Active In-The-Wild Exploit: “Copy Fail” Grants Root Privileges on Millions of Linux Systems

Do Son May 2, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2026-31431 to its Known Exploited Vulnerabilities (KEV)...