vulnerability management Archives • Page 3 of 3 • Daily CyberSecurity

Endpoint Exposed: Critical FortiClient EMS Flaw (CVSS 9.1) Allows Unauthenticated RCE FortiSandbox Vulnerability Unauthenticated RCE FortiClient EMS Vulnerability CVE-2026-21643 FortiClient EMS Vulnerability CVE-2026-21643 CVE-2023-34992 - CVE-2023-37936 Fortinet Vulnerabilities CVE-2025-64155

FortiSandbox Vulnerability Unauthenticated RCE FortiClient EMS Vulnerability CVE-2026-21643 FortiClient EMS Vulnerability CVE-2026-21643 CVE-2023-34992 - CVE-2023-37936 Fortinet Vulnerabilities CVE-2025-64155

Endpoint Exposed: Critical FortiClient EMS Flaw (CVSS 9.1) Allows Unauthenticated RCE

Do Son February 9, 2026

Fortinet has issued a high-priority security advisory for its FortiClient Enterprise Management Server (EMS), warning of a...

Silent Intrusion: “Metro4Shell” Exploited in the Wild Since December Metro4Shell CVE-2025-11953

Silent Intrusion: “Metro4Shell” Exploited in the Wild Since December

Do Son February 4, 2026

A new report from VulnCheck reveals that CVE-2025-11953, a critical flaw in the Metro development server dubbed...

Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware Oracle breach Oracle Fusion Middleware CVE-2026-21962

Total Takeover: Critical CVSS 10 Flaw Found in Oracle Fusion Middleware

Do Son January 21, 2026

Oracle has kicked off 2026 with a massive security overhaul, releasing its first Critical Patch Update (CPU)...

CVE-2026-22718: EOL Spring CLI Tool for VS Code Found Vulnerable to Command Injection Spring HATEOAS flaws, CVE-2026-41006, CVE-2026-41007 CVE-2024-22243 Spring CLI Vulnerability CVE-2026-22718

Spring HATEOAS flaws, CVE-2026-41006, CVE-2026-41007 CVE-2024-22243 Spring CLI Vulnerability CVE-2026-22718

CVE-2026-22718: EOL Spring CLI Tool for VS Code Found Vulnerable to Command Injection

Do Son January 13, 2026

Developers using the Spring CLI extension for Visual Studio Code are being urged to clean up their...

CISA “Must-Patch” Alert: Critical Gogs Exploit CVE-2025-8110 Active in Wild Gogs Vulnerability CVE-2025-8110 CVE-2025-64111

CISA “Must-Patch” Alert: Critical Gogs Exploit CVE-2025-8110 Active in Wild

Do Son January 13, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has added a dangerous new entry to its “Must-Patch” list,...

CVE-2026-22184 (CVSS 9.3): Critical zlib Flaw Opens Door to Global Buffer Overflow zlib Vulnerability CVE-2026-22184

CVE-2026-22184 (CVSS 9.3): Critical zlib Flaw Opens Door to Global Buffer Overflow

Do Son January 12, 2026

A critical vulnerability has been discovered in zlib, the lossless data-compression engine used on “virtually any computer...

CISA KEV Alert: HPE’s Maximum CVSS Score Flaw and a Zombie PowerPoint Bug CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA KEV Alert: HPE’s Maximum CVSS Score Flaw and a Zombie PowerPoint Bug

Do Son January 8, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with two...

GitLab Patch: High-Severity XSS & AI Flaws Expose User Data GitLab AI Gateway Vulnerability CVE-2026-1868 CVE-2025-0314 GitLab Security Update CVE-2025-9222

GitLab Patch: High-Severity XSS & AI Flaws Expose User Data

Do Son January 8, 2026

GitLab has issued a critical security release for its Community Edition (CE) and Enterprise Edition (EE) platforms,...

Chrome Security Update Use After Free Chrome Security Update Critical Vulnerabilities Chrome Security Update CVE-2026-3062 Chrome Security Update V8 Engine Vulnerability Chrome Security Update CVE-2026-1862 CVE-2026-0628 Chrome 143 Update Chrome Safe Browsing UAF, CVE-2025-11756 Chrome Memory Flaws, CVE-2025-11460 Google Chrome, vulnerability CVE-2025-10200, CVE-2025-10201 Big Sleep CVE-2025-9478 Chrome Update, Security Vulnerabilities

Google Patches High-Severity “WebView” Flaw in Chrome 143

Do Son January 7, 2026

Google has announced an important security update for the Stable channel of its Chrome browser, rolling out...

CISA Clarifies CVE Program’s Stability Amid Funding Concerns Img_2025_04_24_22_04_18

CISA Clarifies CVE Program’s Stability Amid Funding Concerns

Do Son April 24, 2025

In response to recent media reports suggesting instability in the Common Vulnerabilities and Exposures (CVE) Program, the...

CISA Extends CVE Program Funding to Prevent Critical Service Disruption CVE Program, CISA Funding

CISA Extends CVE Program Funding to Prevent Critical Service Disruption

Do Son April 16, 2025

In a crucial move to safeguard one of the cybersecurity community’s most foundational tools, the Cybersecurity and...

CVE Foundation Launched to Secure Vulnerability Tracking CVE Foundation, CVE Program

CVE Foundation Launched to Secure Vulnerability Tracking

Do Son April 16, 2025

In a major shift for the cybersecurity world, the CVE Foundation has officially been launched to ensure...

MITRE Warns of CVE Program Disruption as U.S. Contract Set to Expire CVE Program, MITRE

MITRE Warns of CVE Program Disruption as U.S. Contract Set to Expire

Do Son April 16, 2025

The cybersecurity world is bracing for a potential earthquake. The MITRE Corporation, the steward of the critical...

Critical Alert 1 Active Exploit Detected Today