Critical Alert 4 Active Exploits Detected Today

CVE-2025-67038 Lantronix EDS5000 Code Injection Vulnerability →
CVE-2026-34910 Ubiquiti UniFi OS Improper Input Validation Vulnerability →
CVE-2026-34909 Ubiquiti UniFi OS Path Traversal Vulnerability →
CVE-2026-34908 Ubiquiti UniFi OS Improper Access Control Vulnerability →
Powered by CVE Watchtower
×
June 23, 2026

Remote Code Execution

Critical CISA Issues Three-Days Patch Mandate for Critical 9.8 F5 BIG-IP RCE State-Sponsored Exploitation CISA KEV Catalog F5 BIG-IP RCE CISA KEV Catalog SolarWinds WHD Exploit CVE-2025-40551 Zimbra XSS Zero-Day CVE-2025-27915 Exploited Windows Security Vulnerabilities

Critical CISA Issues Three-Days Patch Mandate for Critical 9.8 F5 BIG-IP RCE

Do Son March 29, 2026 0
The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical Remote Code Execution (RCE) vulnerability...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> CISA Issues Three-Days Patch Mandate for Critical 9.8 F5 BIG-IP RCE
Telegram Denies “Zero-Click” Sticker Exploit as 9.8 CVSS Security Alert Ignites a Global Standoff Telegram Zero-Click ZDI-CAN-30207

Telegram Denies “Zero-Click” Sticker Exploit as 9.8 CVSS Security Alert Ignites a Global Standoff

Do Son March 27, 2026 0
A critical security flaw has been unearthed in Telegram, the world’s leading encrypted messaging platform, drawing significant...
Read More Read more about Telegram Denies “Zero-Click” Sticker Exploit as 9.8 CVSS Security Alert Ignites a Global Standoff
Critical Hackers Actively Exploiting 9.8 Critical RCE Flaw in Kali Forms WordPress Plugin 98

Critical Hackers Actively Exploiting 9.8 Critical RCE Flaw in Kali Forms WordPress Plugin

Do Son March 26, 2026 0
The attackers begin actively exploiting a critical vulnerability in Kali Forms, a popular drag-and-drop form builder WordPress...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Hackers Actively Exploiting 9.8 Critical RCE Flaw in Kali Forms WordPress Plugin
Critical NAS Under Siege: Critical 9.8 CVSS Bug in Synology Telnet Opens the Door to Total Hijack Synology Chat Server vulnerabilities Synology security update Synology DSM Update NAS Security Vulnerability Synology VPN Update SSL VPN Vulnerability Synology Telnet Flaw DSM Security Update Synology DSM Telnet vulnerability BeeStation Zero-Day, Pwn2Own RCE CVE-2024-11131 & CVE-2024-10442 CVE-2025-2848 Synology, NAS

Critical NAS Under Siege: Critical 9.8 CVSS Bug in Synology Telnet Opens the Door to Total Hijack

Do Son March 26, 2026 0
Synology has issued an urgent security update for its DiskStation Manager (DSM) operating system to address a...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> NAS Under Siege: Critical 9.8 CVSS Bug in Synology Telnet Opens the Door to Total Hijack
Critical AI Workflows Under Fire: Critical RCE and File Write Flaws Expose Langflow Servers Langflow Vulnerability CVE-2026-42048 Langflow RCE CVE-2026-27966 Langflow Vulnerabilities CVE-2026-33017

Critical AI Workflows Under Fire: Critical RCE and File Write Flaws Expose Langflow Servers

Do Son March 19, 2026 0
Security researchers have identified two severe vulnerabilities in Langflow, the popular visual framework for building AI-powered agents....
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> AI Workflows Under Fire: Critical RCE and File Write Flaws Expose Langflow Servers
Critical Critical 9.8 CVSS Schneider Electric Flaw Exposes SCADA and Data Center Systems CVE-2024-10575 CVE-2025-1960 Schneider Electric Vulnerability CVE-2026-0667

Critical Critical 9.8 CVSS Schneider Electric Flaw Exposes SCADA and Data Center Systems

Do Son March 18, 2026 0
Schneider Electric has exposed the curtain on two significant vulnerabilities affecting critical infrastructure tools. From remote terminal...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Critical 9.8 CVSS Schneider Electric Flaw Exposes SCADA and Data Center Systems
Critical Instant Hijack: Critical 10.0 CVSS File Browser Flaw Grants Automatic Admin Rights File Browser Vulnerability CVE-2026-32760

Critical Instant Hijack: Critical 10.0 CVSS File Browser Flaw Grants Automatic Admin Rights

Do Son March 17, 2026 0
Security researchers have issued a high-priority alert for users of File Browser, a popular open-source self-hosted cloud...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Instant Hijack: Critical 10.0 CVSS File Browser Flaw Grants Automatic Admin Rights
Critical The Poisoned Pickle: Critical Unpatched RCE Flaws Expose SGLang AI Infrastructure SGLang Vulnerability Pickle Deserialization

Critical The Poisoned Pickle: Critical Unpatched RCE Flaws Expose SGLang AI Infrastructure

Do Son March 16, 2026 0
Security researchers have issued a warning to the AI development community following the discovery of critical vulnerabilities...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> The Poisoned Pickle: Critical Unpatched RCE Flaws Expose SGLang AI Infrastructure
Critical Critical Alert: SAP’s Latest Security Update Fixes 9.8 CVSS RCE and Deserialization Flaws SAP Security Patches CVE-2026-27685 SAP Security Update CVE-2026-0488 CVE-2024-47578 - CVE-2025-0070 and CVE-2025-0066

Critical Critical Alert: SAP’s Latest Security Update Fixes 9.8 CVSS RCE and Deserialization Flaws

Do Son March 10, 2026 0
Today, 2026, SAP released its monthly security patch update, addressing 15 new security notes across its product...
Read More Read more about <span class="dcs-sev-badge" style="background:#ef4444;">Critical</span> Critical Alert: SAP’s Latest Security Update Fixes 9.8 CVSS RCE and Deserialization Flaws