Critical Alert

CVE-2026-50751 - Critical Check Point VPN Exploit Discovered Active in the Wild. View Threat Details →

Powered by CVE WATCHTOWER

×

privilege escalation

CISA Expands Active Exploit Catalog with Cisco, Arista, and Chromium Flaws CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA Expands Active Exploit Catalog with Cisco, Arista, and Chromium Flaws

Do Son June 10, 2026

Federal Registry Alerts Enterprise Teams to Real-World Infiltration Risks The Cybersecurity and Infrastructure Security Agency updated its...

ABB Patches Critical T-MAC Plus Terminal System Flaws ABB T-MAC Plus vulnerabilities terminal system flaws ABB OPTIMAX Vulnerability CVE-2025-14510 ABB Edgenius Auth Bypass, Critical RCE ABB, ASPECT BMS CVE-2024-48841, CVE-2024-48849, and CVE-2024-48852 CVE-2024-48510

ABB T-MAC Plus vulnerabilities terminal system flaws ABB OPTIMAX Vulnerability CVE-2025-14510 ABB Edgenius Auth Bypass, Critical RCE ABB, ASPECT BMS CVE-2024-48841, CVE-2024-48849, and CVE-2024-48852 CVE-2024-48510

ABB Patches Critical T-MAC Plus Terminal System Flaws

Do Son June 9, 2026

Understanding the Management Vulnerabilities Industrial operator ABB recently issued an urgent security update to address several ABB...

Shopper Laravel Flaw Exploit Sparks Urgent E-Commerce Security Warning Shopper Laravel flaw Shopper Laravel flaw exploit

Shopper Laravel flaw Shopper Laravel flaw exploit

Shopper Laravel Flaw Exploit Sparks Urgent E-Commerce Security Warning

Do Son June 8, 2026

Understanding the E-Commerce Admin Panel Threat A severe Shopper Laravel flaw threatens online stores using the popular...

Critical Security Patch Resolves Flaw in NI SystemLink Enterprise MBS Universal Gateway flaws stack buffer overflow bugs SystemLink authentication bypass privilege escalation bug Cache Warmer RCE flaw Magento PHP object injection

MBS Universal Gateway flaws stack buffer overflow bugs SystemLink authentication bypass privilege escalation bug Cache Warmer RCE flaw Magento PHP object injection

Critical Security Patch Resolves Flaw in NI SystemLink Enterprise

Do Son June 4, 2026

Overview of the Severe Dashboard Flaw National Instruments released an urgent security advisory for its enterprise data...

Cisco Unified CM Vulnerability Exposed with Public Exploit Code

Cisco Unified CM vulnerability public PoC code disclosure

Cisco Unified CM Vulnerability Exposed with Public Exploit Code

Do Son June 4, 2026

A severe Cisco Unified CM vulnerability threatens network infrastructure globally. This flaw allows unauthenticated remote adversaries to...

Severe Plesk Privilege Escalation Flaw Patched in Linux Versions

Plesk privilege escalation flaw CVE-2026-44962 patch Plesk LPE, Root Command Execution

Severe Plesk Privilege Escalation Flaw Patched in Linux Versions

Do Son June 1, 2026

A dangerous security vulnerability has been uncovered within a widely used web hosting control panel. Specifically, a...

KubeVirt Privilege Escalation Flaw Exposes Kubernetes Clusters to Takeover

KubeVirt privilege escalation flaw cluster takeover risk

KubeVirt Privilege Escalation Flaw Exposes Kubernetes Clusters to Takeover

Do Son May 29, 2026

Security analysts have uncovered a severe security defect within cloud virtualization infrastructure. Specifically, the newly identified KubeVirt...

Critical Privilege Escalation Flaw Fixed in OpenVPN Connect for macOS OpenVPN Connect macOS vulnerability macOS privilege escalation fix OVPNX - OpenVPN Zero-Day

OpenVPN Connect macOS vulnerability macOS privilege escalation fix OVPNX - OpenVPN Zero-Day

Critical Privilege Escalation Flaw Fixed in OpenVPN Connect for macOS

Do Son May 28, 2026

Security researchers recently discovered a severe security flaw in a popular virtual private network client. Specifically, developers...

Veeam Patches Critical Remote Code Execution and Privilege Escalation Flaws Veeam security vulnerabilities

Veeam security vulnerabilities

Veeam Patches Critical Remote Code Execution and Privilege Escalation Flaws

Do Son May 28, 2026

Veeam has released urgent software updates to fix several security weaknesses in its popular backup and management...

Linux Kernel Vulnerabilities Trigger Moxa Security Advisory Moxa Linux kernel vulnerabilities Moxa Vulnerability CVE-2024-12297 Moxa OpenSSH Vulnerability CVE-2023-38408 CVE-2023-5961 - CVE-2024-9138 and CVE-2024-9140

Moxa Linux kernel vulnerabilities Moxa Vulnerability CVE-2024-12297 Moxa OpenSSH Vulnerability CVE-2023-38408 CVE-2023-5961 - CVE-2024-9138 and CVE-2024-9140

Linux Kernel Vulnerabilities Trigger Moxa Security Advisory

Do Son May 27, 2026

Industrial networking provider Moxa recently published an urgent security advisory regarding critical weaknesses in its operating systems....

CVSS 10.0 Zero-Day: Active Attacks Exploit LiteSpeed cPanel Plugin for Root Server Access LiteSpeed cPanel Plugin Vulnerability CVE-2026-48172 Exploit

LiteSpeed cPanel Plugin Vulnerability CVE-2026-48172 Exploit

CVSS 10.0 Zero-Day: Active Attacks Exploit LiteSpeed cPanel Plugin for Root Server Access

Do Son May 22, 2026

A critical vulnerability in the LiteSpeed User-End cPanel Plugin is currently being actively exploited in the wild,...

CVSS 10.0 Alert: Critical Cisco Secure Workload Exploit Grants Unauthenticated Site Admin Access Cisco Secure Workload Vulnerability CVE-2026-20223 CVSS 10

Cisco Secure Workload Vulnerability CVE-2026-20223 CVSS 10

CVSS 10.0 Alert: Critical Cisco Secure Workload Exploit Grants Unauthenticated Site Admin Access

Do Son May 21, 2026

Cisco has issued an urgent security advisory addressing a maximum-severity vulnerability discovered within its zero-trust microsegmentation and...

Public Exploit Exposes Root Privilege Escalation Flaw in VMware Fusion VMware Fusion TOCTOU Exploit CVE-2026-41702 PoC

VMware Fusion TOCTOU Exploit CVE-2026-41702 PoC

Public Exploit Exposes Root Privilege Escalation Flaw in VMware Fusion

Do Son May 21, 2026

Mathieu Farrell, an independent security researcher operating under the handle @coiffeur0x90, has publicly disclosed the inner workings...

Keys to the Kingdom: Critical 9.9 CVSS Budibase Flaw Allows Total Tenant Takeover bui

bui

Keys to the Kingdom: Critical 9.9 CVSS Budibase Flaw Allows Total Tenant Takeover

Do Son May 20, 2026

Budibase, the popular open-source operations platform known for saving engineers hundreds of hours building secure Agents, Apps,...

Critical 9.9 CVSS Flaw in Arcane Exposes GitOps Secrets to Basic Users Arcane Docker Vulnerability CVE-2026-45625

Arcane Docker Vulnerability CVE-2026-45625

Critical 9.9 CVSS Flaw in Arcane Exposes GitOps Secrets to Basic Users

Do Son May 20, 2026

Arcane, the popular tool billed as “Modern Docker Management, Designed for Everyone”, has disclosed a severe security...

PoC Exploit Code Publicly Released: New “PinTheft” Linux Flaw Overwrites Page Cache for Instant Root PinTheft Linux Exploit Linux LPE PoC Disclosed

PinTheft Linux Exploit Linux LPE PoC Disclosed

PoC Exploit Code Publicly Released: New “PinTheft” Linux Flaw Overwrites Page Cache for Instant Root

Do Son May 20, 2026

A newly detailed vulnerability known as “PinTheft” is giving Linux system administrators serious pause. Discovered by Aaron...

GPU Security Alert: NVIDIA Drivers Hit with Critical 8.8 CVSS Flaw and Enterprise vGPU Bugs NVIDIA DALI vulnerabilities NVIDIA Driver Security Update CVE-2026-24187 Linux

NVIDIA DALI vulnerabilities NVIDIA Driver Security Update CVE-2026-24187 Linux

GPU Security Alert: NVIDIA Drivers Hit with Critical 8.8 CVSS Flaw and Enterprise vGPU Bugs

Do Son May 19, 2026

NVIDIA has officially rolled out a comprehensive software security update for its GPU Display Driver to address...

Critical Portainer Flaws Grant Restricted Users Root Access to the Host Portainer Container Escape CVE-2026-44849 Swarm Bypass

Portainer Container Escape CVE-2026-44849 Swarm Bypass

Critical Portainer Flaws Grant Restricted Users Root Access to the Host

Do Son May 19, 2026

A dangerous pair of critical authorization failures within the Portainer container management platform allows standard, restricted users...

Root Access Race: TOCTOU Vulnerability (CVE-2026-41702) Hits VMware Fusion VMware Fusion Privilege Escalation CVE-2026-41702 TOCTOU VMware Vulnerabilities, Broadcom Security CVE-2024-38814 - VMware HCX CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226

VMware Fusion Privilege Escalation CVE-2026-41702 TOCTOU VMware Vulnerabilities, Broadcom Security CVE-2024-38814 - VMware HCX CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226

Root Access Race: TOCTOU Vulnerability (CVE-2026-41702) Hits VMware Fusion

Do Son May 15, 2026

Broadcom has recently issued a critical alert and accompanying patches for VMware Fusion, addressing a local privilege...

PoC Released: Critical Linux Kernel ptrace Flaw Publicly Disclosed—Unprivileged Root File Access Possible key

key

PoC Released: Critical Linux Kernel ptrace Flaw Publicly Disclosed—Unprivileged Root File Access Possible

Do Son May 15, 2026

A critical “sanity check” gap in the Linux kernel’s ptrace logic has finally been addressed, but not...