CISA KEV

Urgent Patch Alert: SharePoint Spoofing Under Active Attack as Microsoft Releases April 2026 Updates

• Vulnerability Report

Urgent Patch Alert: SharePoint Spoofing Under Active Attack as Microsoft Releases April 2026 Updates

Do Son April 15, 2026 0

Microsoft’s April 2026 Patch Tuesday has arrived with a massive security payload, addressing a staggering 163 vulnerabilities,...

Read More Read more about Urgent Patch Alert: SharePoint Spoofing Under Active Attack as Microsoft Releases April 2026 Updates

CISA Adds 7 Fresh Exploits to KEV Catalog

• Vulnerability Report

CISA Adds 7 Fresh Exploits to KEV Catalog

Do Son April 14, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding seven...

Read More Read more about CISA Adds 7 Fresh Exploits to KEV Catalog

The CVE Watchtower: Weekly Threat Intelligence Briefing (April 6 – April 12, 2026)

• Weekly Recap

The CVE Watchtower: Weekly Threat Intelligence Briefing (April 6 – April 12, 2026)

Do Son April 13, 2026 0

Welcome to this week’s vulnerability digest. As we close out the first full week of April, security...

Read More Read more about The CVE Watchtower: Weekly Threat Intelligence Briefing (April 6 – April 12, 2026)

CISA Warning: Critical Ivanti EPMM Code Injection Vulnerability Under Active Attack

• Vulnerability Report

CISA Warning: Critical Ivanti EPMM Code Injection Vulnerability Under Active Attack

Do Son April 9, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical code injection vulnerability in Ivanti...

Read More Read more about CISA Warning: Critical Ivanti EPMM Code Injection Vulnerability Under Active Attack

The CVE Watchtower: Weekly Threat Intelligence Briefing (March 30 – April 5, 2026)

• Weekly Recap

The CVE Watchtower: Weekly Threat Intelligence Briefing (March 30 – April 5, 2026)

Do Son April 6, 2026 0

Welcome to this week’s vulnerability digest. Whether you are a CISO charting out your risk management roadmap...

Read More Read more about The CVE Watchtower: Weekly Threat Intelligence Briefing (March 30 – April 5, 2026)

CISA Issues Emergency Mandate as Critical 9.3 NetScaler Flaw “Bleeds” Admin Sessions

• Vulnerability Report

CISA Issues Emergency Mandate as Critical 9.3 NetScaler Flaw “Bleeds” Admin Sessions

Do Son March 31, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical vulnerability impacting Citrix NetScaler ADC...

Read More Read more about CISA Issues Emergency Mandate as Critical 9.3 NetScaler Flaw “Bleeds” Admin Sessions

The CVE Watchtower: Weekly Threat Intelligence Briefing (March 23 – March 29, 2026)

• Weekly Recap

The CVE Watchtower: Weekly Threat Intelligence Briefing (March 23 – March 29, 2026)

Do Son March 30, 2026 0

Whether you are steering the organizational ship as a CISO or maintaining the operational engines as a...

Read More Read more about The CVE Watchtower: Weekly Threat Intelligence Briefing (March 23 – March 29, 2026)

CISA Issues Three-Days Patch Mandate for Critical 9.8 F5 BIG-IP RCE

• Vulnerability Report

CISA Issues Three-Days Patch Mandate for Critical 9.8 F5 BIG-IP RCE

Do Son March 29, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical Remote Code Execution (RCE) vulnerability...

Read More Read more about CISA Issues Three-Days Patch Mandate for Critical 9.8 F5 BIG-IP RCE

Active Exploits: CISA Adds Critical Craft CMS and Apple ‘DarkSword’ Flaws to KEV

• Vulnerability Report

Active Exploits: CISA Adds Critical Craft CMS and Apple ‘DarkSword’ Flaws to KEV

Do Son March 21, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding five...

Read More Read more about Active Exploits: CISA Adds Critical Craft CMS and Apple ‘DarkSword’ Flaws to KEV

Exploited in the Wild: CISA Warns of Active Attacks on Microsoft SharePoint and Zimbra

• Vulnerability Report

Exploited in the Wild: CISA Warns of Active Attacks on Microsoft SharePoint and Zimbra

Do Son March 19, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has officially expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding...

Read More Read more about Exploited in the Wild: CISA Warns of Active Attacks on Microsoft SharePoint and Zimbra

CISA Flags Actively Exploited Wing FTP Server Flaw

• Vulnerability Report

CISA Flags Actively Exploited Wing FTP Server Flaw

Do Son March 16, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive after adding a new vulnerability...

Read More Read more about CISA Flags Actively Exploited Wing FTP Server Flaw

CISA Mandates Urgent Patch for Maximum 10.0 CVSS n8n RCE Flaw

• Vulnerability Report

CISA Mandates Urgent Patch for Maximum 10.0 CVSS n8n RCE Flaw

Do Son March 12, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a new, high-stakes entry to its Known...

Read More Read more about CISA Mandates Urgent Patch for Maximum 10.0 CVSS n8n RCE Flaw

The ‘Must-Patch’ List: CISA Adds Actively Exploited SolarWinds, Ivanti, and Omnissa Flaws to KEV

• Vulnerability Report

The ‘Must-Patch’ List: CISA Adds Actively Exploited SolarWinds, Ivanti, and Omnissa Flaws to KEV

Do Son March 10, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding three...

Read More Read more about The ‘Must-Patch’ List: CISA Adds Actively Exploited SolarWinds, Ivanti, and Omnissa Flaws to KEV

CISA Adds Qualcomm and VMware Flaws to Known Exploited Catalog

• Vulnerability Report

CISA Adds Qualcomm and VMware Flaws to Known Exploited Catalog

Do Son March 4, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog, adding two...

Read More Read more about CISA Adds Qualcomm and VMware Flaws to Known Exploited Catalog

Exploited in the Wild: Critical BeyondTrust Flaw (CVSS 9.9) Opens Door to Network Takeover

• Vulnerability Report

Exploited in the Wild: Critical BeyondTrust Flaw (CVSS 9.9) Opens Door to Network Takeover

Do Son February 15, 2026 0

A critical vulnerability in widely used remote access software is currently under active attack, with threat actors...

Read More Read more about Exploited in the Wild: Critical BeyondTrust Flaw (CVSS 9.9) Opens Door to Network Takeover

PoC Released for Critical Oracle E-Business Suite Flaw Exploited by Ransomware

• Vulnerability

PoC Released for Critical Oracle E-Business Suite Flaw Exploited by Ransomware

Do Son January 26, 2026 0

Vietnamese security researcher MB VRED has publicly released the technical blueprints and proof-of-concept (PoC) exploit code for...

Read More Read more about PoC Released for Critical Oracle E-Business Suite Flaw Exploited by Ransomware

CISA Alert: Critical VMware vCenter RCE (CVSS 9.8) Now Exploited in the Wild

• Vulnerability Report

CISA Alert: Critical VMware vCenter RCE (CVSS 9.8) Now Exploited in the Wild

Do Son January 25, 2026 0

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Broadcom VMware vCenter Server...

Read More Read more about CISA Alert: Critical VMware vCenter RCE (CVSS 9.8) Now Exploited in the Wild

CISA Alert: MongoBleed Added to KEV Catalog as 80,000+ Servers Face Active Exploitation

• Vulnerability Report

CISA Alert: MongoBleed Added to KEV Catalog as 80,000+ Servers Face Active Exploitation

Do Son December 30, 2025 0

The Cybersecurity and Infrastructure Security Agency (CISA) has officially sounded the alarm on a critical vulnerability in...

Read More Read more about CISA Alert: MongoBleed Added to KEV Catalog as 80,000+ Servers Face Active Exploitation

CISA Alert: Chinese Hackers Weaponize CVSS 10 Cisco Zero-Day & SonicWall Exploit Chains

• Vulnerability Report

CISA Alert: Chinese Hackers Weaponize CVSS 10 Cisco Zero-Day & SonicWall Exploit Chains

Do Son December 18, 2025 0

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent directive adding three critical vulnerabilities to...

Read More Read more about CISA Alert: Chinese Hackers Weaponize CVSS 10 Cisco Zero-Day & SonicWall Exploit Chains

CISA KEV Alert: GeoServer XXE Flaw Under Active Attack Risks Data Theft & Internal Network Scanning

• Vulnerability Report

CISA KEV Alert: GeoServer XXE Flaw Under Active Attack Risks Data Theft & Internal Network Scanning

Do Son December 12, 2025 0

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting the widely used OSGeo...

Read More Read more about CISA KEV Alert: GeoServer XXE Flaw Under Active Attack Risks Data Theft & Internal Network Scanning