https://www.splashtop.com/pt/blog/what-does-active-exploitation-mean
What Is Active Exploitation in Cybersecurity?
Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk.
what isactive exploitationcybersecurity
https://www.cybersecuritydive.com/news/vulnerability-sonicwall-firewalls-exploitation/740345/
SonicWall authentication flaw under threat of active exploitation | Cybersecurity Dive
Weeks after the company released a patch, researchers warn the CVE is being targeted by threat actors.
under threatactive exploitationsonicwallauthenticationflaw
https://thehackernews.com/2026/03/cisco-confirms-active-exploitation-of.html?ref=blog.netmanageit.com
Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities
Cisco warns CVE-2026-20122 and CVE-2026-20128 in Catalyst SD-WAN Manager are actively exploited; patches released across multiple software versions.
active exploitationsd wanciscoconfirms
https://www.splashtop.com/ja/blog/what-does-active-exploitation-mean
What Is Active Exploitation in Cybersecurity?
Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk.
what isactive exploitationcybersecurity
https://www.splashtop.com/nl/blog/what-does-active-exploitation-mean
What Is Active Exploitation in Cybersecurity?
Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk.
what isactive exploitationcybersecurity
https://www.fastly.com/it/blog/active-exploitation-unauthenticated-stored-xss-vulnerabilities-wordpress
Active exploitation of unauthenticated stored XSS vulnerabilities in WordPress Plugins | Fastly
We have observed active exploitation attempts targeting three high-severity CVEs: CVE-2024-2194, CVE-2023-6961, and CVE-2023-40000.
active exploitationstored xsswordpress plugins
https://thehackernews.com/2024/05/cisa-warns-of-active-exploitation-of.html?m=1
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability
A critical flaw (CVE-2023-7028) is being actively exploited, allowing account takeover by sending password reset emails to unverified addresses.
active exploitationpassword resetcisawarnssevere
https://www.sophos.com/fr-fr/blog/microsoft-office-vulnerability-cve-2026-21509-in-active-exploitation
Microsoft Office vulnerability (CVE-2026-21509) in active exploitation | SOPHOS
On January 26, 2026, Microsoft released an out-of-band update to address a high-severity (CVSS score of 7.8) vulnerability affecting multiple Microsoft Office...
microsoft officeactive exploitationvulnerabilitycve2026
https://www.splashtop.com/de/blog/what-does-active-exploitation-mean
What Is Active Exploitation in Cybersecurity?
Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk.
what isactive exploitationcybersecurity
https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html?version=meter+at+null
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
CISA warns of a critical flaw in Microsoft SharePoint Server! CVE-2023-29357 poses a serious risk with a 9.8 CVSS score.
act nowactive exploitationmicrosoft sharepointcisaflags
https://thehackernews.com/2024/05/cisa-warns-of-active-exploitation-of.html
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability
A critical flaw (CVE-2023-7028) is being actively exploited, allowing account takeover by sending password reset emails to unverified addresses.
active exploitationpassword resetcisawarnssevere
https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html
Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability
CISA warns of a critical flaw in Microsoft SharePoint Server! CVE-2023-29357 poses a serious risk with a 9.8 CVSS score.
act nowactive exploitationmicrosoft sharepointcisaflags
https://www.sophos.com/es-es/blog/adobe-reader-zero-day-vulnerability-in-active-exploitation
Adobe Reader zero-day vulnerability in active exploitation | SOPHOS
A zero-day vulnerability in Adobe Reader has been exploited since at least December 2025
zero day vulnerabilityadobe readeractive exploitationsophos
https://www.splashtop.com/blog/what-does-active-exploitation-mean
What Is Active Exploitation in Cybersecurity?
Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk.
what isactive exploitationcybersecurity
https://thehackernews.com/2026/04/microsoft-confirms-active-exploitation.html
Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202
CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
active exploitationwindows shellmicrosoftconfirmscve
https://thehackernews.com/2022/10/fortinet-warns-of-active-exploitation.html?m=1
Fortinet Warns of Active Exploitation of Newly Discovered Critical Auth Bypass Bug
Fortinet warns that the newly discovered critical vulnerability affecting its firewall and proxy products is being actively exploited in the wild.
active exploitationfortinetwarns
https://thehackernews.com/2023/09/new-libwebp-vulnerability-under-active.html?m=0
Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score
Libwebp image library under attack! A new CVE-2023-5129 has emerged, scoring a maximum 10.0 on CVSS. Get the details now
active exploitationcriticalvulnerabilitygetsmaximum
https://www.splashtop.com/fr/blog/what-does-active-exploitation-mean
What Is Active Exploitation in Cybersecurity?
Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk.
what isactive exploitationcybersecurity
https://securityaffairs.com/152552/hacking/cisco-ios-xe-zero-day.html
Cisco warns of active exploitation of IOS XE zero-day
Oct 16, 2023 - Cisco warned customers of a critical zero-day vulnerability in its IOS XE Software that is actively exploited in attacks.
active exploitationios xeciscowarnszero
https://www.rapid7.com/blog/post/2025/04/28/etr-active-exploitation-of-sap-netweaver-visual-composer-cve-2025-31324/
Active Exploitation of SAP NetWeaver Visual Composer CVE-2025-31324 | Rapid7 Blog
On 4/24/25, enterprise resource planning company SAP published CVE-2025-31324, a zero-day vulnerability in NetWeaver Visual Composer that carries a CVSSv3...
sap netweaver visual composeractive exploitation
https://www.malwarebytes.com/blog/news/2024/06/update-now-google-pixel-vulnerability-is-under-active-exploitation
Update now! Google Pixel vulnerability is under active exploitation | Malwarebytes
Dec 3, 2025 - Google revealed that a firmware vulnerability in its Pixel devices has been under limited active exploitation
update nowgoogle pixelactive exploitationvulnerabilitymalwarebytes
https://www.sophos.com/en-us/blog/adobe-reader-zero-day-vulnerability-in-active-exploitation
Adobe Reader zero-day vulnerability in active exploitation | SOPHOS
A zero-day vulnerability in Adobe Reader has been exploited since at least December 2025
zero day vulnerabilityadobe readeractive exploitationsophos
https://thehackernews.com/2023/10/cisa-warns-of-active-exploitation-of.html
CISA Warns of Active Exploitation of JetBrains and Windows Vulnerabilities
CISA has identified 2 active vulnerabilities - CVE-2023-42793 and CVE-2023-28229.
active exploitationcisawarnsjetbrainswindows
https://hackread.com/watchtowr-exploits-target-sonicwall-sma-100-devices/
watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices
active exploitationwarnssonicwallsma100
https://cyberinsider.com/active-exploitation-of-xss-flaws-in-popular-wordpress-plugins/
Active Exploitation of XSS Flaws in Popular WordPress Plugins | CyberInsider
Jun 10, 2024 - Fastly has detected active exploitation targeting three high-severity CVEs in WordPress plugins, exploiting unauthenticated stored XSS bugs.
popular wordpress pluginsactive exploitationxssflaws
https://thehackernews.com/2022/10/fortinet-warns-of-active-exploitation.html
Fortinet Warns of Active Exploitation of Newly Discovered Critical Auth Bypass Bug
Fortinet warns that the newly discovered critical vulnerability affecting its firewall and proxy products is being actively exploited in the wild.
active exploitationfortinetwarns
https://thehackernews.com/2024/05/researchers-uncover-active-exploitation.html?m=1
Researchers Uncover Active Exploitation of WordPress Plugin Vulnerabilities
Researchers have discovered several vulnerabilities in popular WordPress plugins that allow attackers to create rogue admin accounts.
active exploitationwordpress pluginresearchersuncovervulnerabilities
https://thehackernews.com/2024/11/cisa-alerts-to-active-exploitation-of.html?ref=secretciso.org
CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability
CISA alerts to active exploits in Palo Alto, CyberPanel, and Android, urging urgent fixes
palo alto networksactive exploitationcisaalerts
https://thehackernews.com/2023/09/new-libwebp-vulnerability-under-active.html
Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score
Libwebp image library under attack! A new CVE-2023-5129 has emerged, scoring a maximum 10.0 on CVSS. Get the details now
active exploitationcriticalvulnerabilitygetsmaximum
https://www.rapid7.com/blog/post/2025/04/28/etr-active-exploitation-of-sap-netweaver-visual-composer-cve-2025-31324/?ref=metacurity.com
Active Exploitation of SAP NetWeaver Visual Composer CVE-2025-31324 | Rapid7 Blog
On 4/24/25, enterprise resource planning company SAP published CVE-2025-31324, a zero-day vulnerability in NetWeaver Visual Composer that carries a CVSSv3...
sap netweaver visual composeractive exploitation
https://thehackernews.com/2024/11/cisa-alerts-to-active-exploitation-of.html
CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability
CISA alerts to active exploits in Palo Alto, CyberPanel, and Android, urging urgent fixes
palo alto networksactive exploitationcisaalerts
https://www.microsoft.com/en-us/security/blog/2025/07/22/disrupting-active-exploitation-of-on-premises-sharepoint-vulnerabilities/
Disrupting active exploitation of on-premises SharePoint vulnerabilities | Microsoft Security Blog
Jul 29, 2025 - Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities targeting internet-facing SharePoint...
active exploitationmicrosoft securitydisrupting
https://thehackernews.com/2024/02/cisa-warns-of-active-exploitation-of.html?version=meter+at+null
CISA Warns of Active Exploitation Apple iOS and macOS Vulnerability
Critical Apple kernel bug in iOS, macOS, and more exploited in the wild. CISA urges FCEB agencies to patch by February 21st.
active exploitationapple ioscisawarnsmacos
https://securityaffairs.com/181104/hacking/critical-fortisiem-flaw-under-active-exploitation-fortinet-warns.html
Critical FortiSIEM flaw under active exploitation, Fortinet warns
Aug 13, 2025 - Fortinet warns of a critical FortiSIEM vulnerability, tracked as CVE-2025-25256, that is actively exploited in attacks in the wild.
active exploitationcriticalfortisiemflawfortinet
https://www.cybersecuritydive.com/news/ivanti-connect-secure-active-exploitation/704334/
Ivanti Connect Secure devices face active exploitation, patch schedule staggered | Cybersecurity...
Unauthenticated attackers can take control of systems by exploiting the zero days, which a suspected state-linked threat actor is chaining together.
secure devicesactive exploitationivanticonnectface
https://www.techtarget.com/searchsecurity/news/252525956/Critical-Fortinet-vulnerability-under-active-exploitation
Critical Fortinet vulnerability under active exploitation | TechTarget
Fortinet on Monday said an authentication bypass vulnerability for three of its services has been exploited in the wild.
active exploitationcriticalfortinetvulnerabilitytechtarget
https://cyberinsider.com/google-confirms-active-exploitation-of-recently-patched-chrome-vulnerability/
Google Confirms Active Exploitation of Recently Patched Chrome Vulnerability | CyberInsider
Aug 27, 2024 - Google recently updated its Chrome Security Bulletin to reveal that a previously patched flaw in the browser is now exploited in the wild.
active exploitationgoogleconfirmsrecentlypatched
https://www.cybersecuritydive.com/news/palo-alto-networks-firewall-exploitation/740193/
Palo Alto Networks warns firewall vulnerability is under active exploitation | Cybersecurity Dive
The flaw, when chained together with a prior vulnerability, can allow an attacker to gain access to unpatched firewalls.
palo alto networks
https://thehackernews.com/2026/02/cisa-flags-four-security-flaws-under.html?version=meter+at+null
CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update
CISA adds four actively exploited vulnerabilities to its KEV catalog, including Chrome RCE, Zimbra SSRF, Windows ActiveX, and ThreatSonar flaws.
security flaws
https://thehackernews.com/2024/12/cisa-adds-acclaim-usaherds.html
CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation
CISA adds CVE-2021-44207 to KEV catalog for active exploitation risk. Agencies must patch by Jan 13, 2025, to mitigate remote code execution.
cisaaddsacclaimvulnerability
https://hashnode.com/posts/active-directory-enumeration-and-exploitation/684d422b21c32799b7ab9872
Discussion on "Active Directory Enumeration & Exploitation" | Hashnode
active directorydiscussionenumerationexploitationhashnode
https://thehackernews.com/2025/02/cisa-adds-microsoft-and-zimbra-flaws-to.html?version=meter+at+null
CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation
CISA adds Microsoft Partner Center and Zimbra ZCS flaws to its KEV catalog, citing active exploitation. Federal agencies must patch by March 18 to mit
https://thehackernews.com/2023/07/zimbra-warns-of-critical-zero-day-flaw.html
Zimbra Warns of Critical Zero-Day Flaw in Email Software Amid Active Exploitation
Zimbra users, be cautious! Zimbra has warned of an actively exploited zero-day vulnerability in its software. Apply the manual fix ASAP to eliminate
zero day flaw
https://thehackernews.com/2025/12/critical-react2shell-flaw-added-to-cisa.html
Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation
CISA flags the React2Shell remote code flaw after real-world attacks hit millions of exposed services.
criticalreact2shellflawadded
https://www.trendmicro.com/en_us/research/23/d/update-now-papercut-vulnerability-cve-2023-27350-under-active-ex.html
Update Now PaperCut Vulnerability CVE-2023-27350 Under Active Exploitation | Trend Micro (US)
https://thehackernews.com/2023/07/zimbra-warns-of-critical-zero-day-flaw.html?m=1
Zimbra Warns of Critical Zero-Day Flaw in Email Software Amid Active Exploitation
Zimbra users, be cautious! Zimbra has warned of an actively exploited zero-day vulnerability in its software. Apply the manual fix ASAP to eliminate
zero day flaw
https://thehackernews.com/2025/02/cisa-adds-microsoft-and-zimbra-flaws-to.html?rand=1734
CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation
CISA adds Microsoft Partner Center and Zimbra ZCS flaws to its KEV catalog, citing active exploitation. Federal agencies must patch by March 18 to mit
https://thehackernews.com/2025/08/trend-micro-confirms-active.html?version=meter+at+null
Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems
Trend Micro flaws let attackers run code remotely on Apex One systems; on-premise users must apply fixes now.
https://thehackernews.com/2025/10/microsoft-issues-emergency-patch-for.html
Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation
Microsoft releases urgent fix for critical WSUS flaw CVE-2025-59287 under active exploitation.
newlypatchedcriticalmicrosoftwsus
https://cyberscoop.com/palo-alto-expedition-firewall-exploit-cisa-kev/
More bugs in Palo Alto Expedition see active exploitation, CISA warns | CyberScoop
Nov 15, 2024 - Hackers have been actively targeting the firewall management software through multiple vulnerabilities.
palo alto
https://www.pluralsight.com/courses/active-directory-exploitation
Active Directory Exploitation
active directoryexploitation
https://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.html
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
Ivanti EPMM flaw CVE-2026-6973 exploited in limited attacks; CISA mandates fixes by May 10, 2026, increasing urgency.
https://thehackernews.com/2023/06/experts-unveil-poc-exploit-for-recent.html?version=meter+at+null
Experts Unveil Exploit for Recent Windows Vulnerability Under Active Exploitation
Experts Unveil Exploit for Recent Windows Vulnerability Under Active Exploitation | Read more hacking news on The Hacker News cybersecurity news website and...
recent windowsexpertsunveilexploitvulnerability
https://thehackernews.com/2024/01/40000-attacks-in-3-days-critical.html?m=1
~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation
Hackers are actively exploiting a critical Atlassian Confluence flaw (CVE-2023-22527) within days of its reveal.
in 3 days40 000
https://www.sophos.com/en-us/blog/cisco-sd-wan-vulnerabilities-cve-2026-20127-cve-2022-20775-in-active-exploitation
Cisco SD WAN vulnerabilities (CVE-2026-20127, CVE-2022-20775) in active exploitation | SOPHOS
On February 25, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and UK National Cyber Security Centre warned that vulnerabilities...
https://securityaffairs.com/146457/security/cisa-warns-samsung-flaw.html
US CISA warns of a Samsung vulnerability under active exploitation
May 20, 2023 - US CISA added the vulnerability CVE-2023-21492 flaw affecting Samsung devices to its Known Exploited Vulnerabilities Catalog.
uscisawarnssamsungvulnerability
https://thehackernews.com/2024/03/cisa-alerts-on-active-exploitation-of.html?rand=1734
CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products
CISA adds 3 security flaws to its Known Exploited Vulnerabilities catalog, citing active exploitation evidence