Critical Alert 4 Active Exploits Detected Today

CVE-2025-67038 Lantronix EDS5000 Code Injection Vulnerability →
CVE-2026-34910 Ubiquiti UniFi OS Improper Input Validation Vulnerability →
CVE-2026-34909 Ubiquiti UniFi OS Path Traversal Vulnerability →
CVE-2026-34908 Ubiquiti UniFi OS Improper Access Control Vulnerability →
Powered by CVE Watchtower
×
June 23, 2026

Remote Code Execution

8.1 Android Security Bulletin May 2025: Multi Vulnerabilities Including Actively Exploited CVE-2025-27363 Android Security Bulletin CVE-2025-27363

8.1 Android Security Bulletin May 2025: Multi Vulnerabilities Including Actively Exploited CVE-2025-27363

Do Son May 5, 2025 0
Google has released its Android Security Bulletin for May 2025, highlighting a range of high-severity vulnerabilities affecting...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.1</span> Android Security Bulletin May 2025: Multi Vulnerabilities Including Actively Exploited CVE-2025-27363
9.8 Langflow Under Attack: CISA Warns of Active Exploitation of CVE-2025-3248 CVE-2025-3248 Langflow Vulnerability Remote Code Execution

9.8 Langflow Under Attack: CISA Warns of Active Exploitation of CVE-2025-3248

Do Son May 5, 2025 0
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2025-3248 to its Known Exploited Vulnerabilities...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.8</span> Langflow Under Attack: CISA Warns of Active Exploitation of CVE-2025-3248
8.8 CVE-2024-7399: Samsung MagicINFO Vulnerability Now Actively Exploited in the Wild Samsung MagicINFO, remote code execution

8.8 CVE-2024-7399: Samsung MagicINFO Vulnerability Now Actively Exploited in the Wild

Do Son May 5, 2025 0
A critical security vulnerability, CVE-2024-7399, is being actively exploited in the wild in Samsung MagicINFO 9 Server,...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.8</span> CVE-2024-7399: Samsung MagicINFO Vulnerability Now Actively Exploited in the Wild
10 CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes Synology vulnerability CVE-2024-10442 PoC

10 CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes

Do Son May 1, 2025 0
A critical remote code execution (RCE) vulnerability has been disclosed in Synology’s DiskStation DS1823xs+, a popular NAS...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">10</span> CVE-2024-10442 (CVSS 10): Zero-Click RCE in Synology DiskStation, PoC Publishes
10 CVE-2025-32444 (CVSS 10): Critical RCE Flaw in vLLM’s Mooncake Integration Exposes AI Infrastructure vLLM Vulnerability CVE-2026-22778 vLLM Memory Corruption, AI Inference RCE CVE-2025-29783 CVE-2025-32444 vLLM vulnerability vLLM, Remote Code Execution

10 CVE-2025-32444 (CVSS 10): Critical RCE Flaw in vLLM’s Mooncake Integration Exposes AI Infrastructure

Do Son May 1, 2025 0
A critical security vulnerability has been disclosed in vLLM, a popular open-source library used for high-performance inference...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">10</span> CVE-2025-32444 (CVSS 10): Critical RCE Flaw in vLLM’s Mooncake Integration Exposes AI Infrastructure
9.9 Quantum Issues Critical Patch for StorNext GUI RCE Vulnerabilities (CVE-2025-46616, CVE-2025-46617) StorNext Vulnerabilities, Remote Code Execution

9.9 Quantum Issues Critical Patch for StorNext GUI RCE Vulnerabilities (CVE-2025-46616, CVE-2025-46617)

Do Son April 29, 2025 0
Quantum has issued a critical security advisory warning users of two high-severity vulnerabilities in the StorNext GUI...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">9.9</span> Quantum Issues Critical Patch for StorNext GUI RCE Vulnerabilities (CVE-2025-46616, CVE-2025-46617)
Critical Critical Vulnerabilities in Quick Agent Software Expose Ricoh MFPs to Remote Attacks Quick Agent Vulnerability, Ricoh MFP Security

Critical Critical Vulnerabilities in Quick Agent Software Expose Ricoh MFPs to Remote Attacks

Do Son April 29, 2025 0
The Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) has issued an alert regarding multiple critical vulnerabilities...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Critical Vulnerabilities in Quick Agent Software Expose Ricoh MFPs to Remote Attacks
Critical ConnectWise Patches Critical ViewState RCE Vulnerability in ScreenConnect ScreenConnect vulnerability ViewState RCE

Critical ConnectWise Patches Critical ViewState RCE Vulnerability in ScreenConnect

Do Son April 26, 2025 0
ConnectWise has issued an important security bulletin addressing a critical code injection vulnerability in ScreenConnect versions 25.2.3...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> ConnectWise Patches Critical ViewState RCE Vulnerability in ScreenConnect
10 CVE-2025-32432 (CVSS 10): Craft CMS Hit by Critical RCE Flaw Exploited in the Wild Craft CMS Vulnerability CVE-2026-32267 CVE-2023-41892 Craft CMS CVE-2025-32432

10 CVE-2025-32432 (CVSS 10): Craft CMS Hit by Critical RCE Flaw Exploited in the Wild

Do Son April 25, 2025 0
Craft CMS, a widely used content management system for developers and agencies, has disclosed a critical vulnerability...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">10</span> CVE-2025-32432 (CVSS 10): Craft CMS Hit by Critical RCE Flaw Exploited in the Wild
10 CVE-2025-34028: Critical RCE Flaw in Commvault Command Center Scores CVSS 10 Commvault vulnerability CVE-2025-34028

10 CVE-2025-34028: Critical RCE Flaw in Commvault Command Center Scores CVSS 10

Do Son April 24, 2025 0
Commvault has disclosed a critical vulnerability affecting its Command Center, identified as CVE-2025-34028, with the maximum CVSS...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">10</span> CVE-2025-34028: Critical RCE Flaw in Commvault Command Center Scores CVSS 10
10.0 Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE Erlang SSH, CVE-2025-32433

10.0 Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE

Do Son April 18, 2025 0
An anonymous security researcher has published proof-of-concept code for CVE-2025-32433, a critical vulnerability in the Erlang/OTP SSH...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">10.0</span> Critical CVE-2025-32433 PoC Released: Erlang/OTP SSH Vulnerability Enables RCE
8.8 Cisco Patches CVE-2025-20236: Unauthenticated RCE Flaw in Webex App via Malicious Meeting Links Webex RCE, CVE-2025-20236

8.8 Cisco Patches CVE-2025-20236: Unauthenticated RCE Flaw in Webex App via Malicious Meeting Links

Do Son April 17, 2025 0
Cisco has issued an important security advisory addressing a high-severity vulnerability in its Webex App that could...
Read More Read more about <span class="dcs-sev-badge" style="background:#f97316;">8.8</span> Cisco Patches CVE-2025-20236: Unauthenticated RCE Flaw in Webex App via Malicious Meeting Links
Critical Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager Siemens RTLS, CVE-2025-40746 CVE-2024-22040 - SINEC Security Monitor Siemens Security Advisory SENTRON 7KT PAC1260

Critical Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager

Do Son April 9, 2025 0
In a recent security advisory, Siemens ProductCERT has revealed multiple critical vulnerabilities affecting the SENTRON 7KT PAC1260...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Siemens Security Alert: Critical Vulnerabilities in SENTRON 7KT PAC1260 Data Manager