Robuta

https://www.splashtop.com/pt/blog/what-does-active-exploitation-mean What Is Active Exploitation in Cybersecurity? Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk. what isactive exploitationcybersecurity https://www.cybersecuritydive.com/news/vulnerability-sonicwall-firewalls-exploitation/740345/ SonicWall authentication flaw under threat of active exploitation | Cybersecurity Dive Weeks after the company released a patch, researchers warn the CVE is being targeted by threat actors. under threatactive exploitationsonicwallauthenticationflaw https://thehackernews.com/2026/03/cisco-confirms-active-exploitation-of.html?ref=blog.netmanageit.com Cisco Confirms Active Exploitation of Two Catalyst SD-WAN Manager Vulnerabilities Cisco warns CVE-2026-20122 and CVE-2026-20128 in Catalyst SD-WAN Manager are actively exploited; patches released across multiple software versions. active exploitationsd wanciscoconfirms https://www.splashtop.com/ja/blog/what-does-active-exploitation-mean What Is Active Exploitation in Cybersecurity? Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk. what isactive exploitationcybersecurity https://www.splashtop.com/nl/blog/what-does-active-exploitation-mean What Is Active Exploitation in Cybersecurity? Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk. what isactive exploitationcybersecurity https://www.fastly.com/it/blog/active-exploitation-unauthenticated-stored-xss-vulnerabilities-wordpress Active exploitation of unauthenticated stored XSS vulnerabilities in WordPress Plugins | Fastly We have observed active exploitation attempts targeting three high-severity CVEs: CVE-2024-2194, CVE-2023-6961, and CVE-2023-40000. active exploitationstored xsswordpress plugins https://thehackernews.com/2024/05/cisa-warns-of-active-exploitation-of.html?m=1 CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability A critical flaw (CVE-2023-7028) is being actively exploited, allowing account takeover by sending password reset emails to unverified addresses. active exploitationpassword resetcisawarnssevere https://www.sophos.com/fr-fr/blog/microsoft-office-vulnerability-cve-2026-21509-in-active-exploitation Microsoft Office vulnerability (CVE-2026-21509) in active exploitation | SOPHOS On January 26, 2026, Microsoft released an out-of-band update to address a high-severity (CVSS score of 7.8) vulnerability affecting multiple Microsoft Office... microsoft officeactive exploitationvulnerabilitycve2026 https://www.splashtop.com/de/blog/what-does-active-exploitation-mean What Is Active Exploitation in Cybersecurity? Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk. what isactive exploitationcybersecurity https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html?version=meter+at+null Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability CISA warns of a critical flaw in Microsoft SharePoint Server! CVE-2023-29357 poses a serious risk with a 9.8 CVSS score. act nowactive exploitationmicrosoft sharepointcisaflags https://thehackernews.com/2024/05/cisa-warns-of-active-exploitation-of.html CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability A critical flaw (CVE-2023-7028) is being actively exploited, allowing account takeover by sending password reset emails to unverified addresses. active exploitationpassword resetcisawarnssevere https://thehackernews.com/2024/01/act-now-cisa-flags-active-exploitation.html Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability CISA warns of a critical flaw in Microsoft SharePoint Server! CVE-2023-29357 poses a serious risk with a 9.8 CVSS score. act nowactive exploitationmicrosoft sharepointcisaflags https://www.sophos.com/es-es/blog/adobe-reader-zero-day-vulnerability-in-active-exploitation Adobe Reader zero-day vulnerability in active exploitation | SOPHOS A zero-day vulnerability in Adobe Reader has been exploited since at least December 2025 zero day vulnerabilityadobe readeractive exploitationsophos https://www.splashtop.com/blog/what-does-active-exploitation-mean What Is Active Exploitation in Cybersecurity? Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk. what isactive exploitationcybersecurity https://thehackernews.com/2026/04/microsoft-confirms-active-exploitation.html Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202 CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication. active exploitationwindows shellmicrosoftconfirmscve https://thehackernews.com/2022/10/fortinet-warns-of-active-exploitation.html?m=1 Fortinet Warns of Active Exploitation of Newly Discovered Critical Auth Bypass Bug Fortinet warns that the newly discovered critical vulnerability affecting its firewall and proxy products is being actively exploited in the wild. active exploitationfortinetwarns https://thehackernews.com/2023/09/new-libwebp-vulnerability-under-active.html?m=0 Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score Libwebp image library under attack! A new CVE-2023-5129 has emerged, scoring a maximum 10.0 on CVSS. Get the details now active exploitationcriticalvulnerabilitygetsmaximum https://www.splashtop.com/fr/blog/what-does-active-exploitation-mean What Is Active Exploitation in Cybersecurity? Apr 30, 2026 - Learn what active exploitation means, why it changes patch priority, and how IT teams can respond faster to reduce risk. what isactive exploitationcybersecurity https://securityaffairs.com/152552/hacking/cisco-ios-xe-zero-day.html Cisco warns of active exploitation of IOS XE zero-day Oct 16, 2023 - Cisco warned customers of a critical zero-day vulnerability in its IOS XE Software that is actively exploited in attacks. active exploitationios xeciscowarnszero https://www.rapid7.com/blog/post/2025/04/28/etr-active-exploitation-of-sap-netweaver-visual-composer-cve-2025-31324/ Active Exploitation of SAP NetWeaver Visual Composer CVE-2025-31324 | Rapid7 Blog On 4/24/25, enterprise resource planning company SAP published CVE-2025-31324, a zero-day vulnerability in NetWeaver Visual Composer that carries a CVSSv3... sap netweaver visual composeractive exploitation https://www.malwarebytes.com/blog/news/2024/06/update-now-google-pixel-vulnerability-is-under-active-exploitation Update now! Google Pixel vulnerability is under active exploitation | Malwarebytes Dec 3, 2025 - Google revealed that a firmware vulnerability in its Pixel devices has been under limited active exploitation update nowgoogle pixelactive exploitationvulnerabilitymalwarebytes https://www.sophos.com/en-us/blog/adobe-reader-zero-day-vulnerability-in-active-exploitation Adobe Reader zero-day vulnerability in active exploitation | SOPHOS A zero-day vulnerability in Adobe Reader has been exploited since at least December 2025 zero day vulnerabilityadobe readeractive exploitationsophos https://thehackernews.com/2023/10/cisa-warns-of-active-exploitation-of.html CISA Warns of Active Exploitation of JetBrains and Windows Vulnerabilities CISA has identified 2 active vulnerabilities - CVE-2023-42793 and CVE-2023-28229. active exploitationcisawarnsjetbrainswindows https://hackread.com/watchtowr-exploits-target-sonicwall-sma-100-devices/ watchTowr Warns of Active Exploitation of SonicWall SMA 100 Devices active exploitationwarnssonicwallsma100 https://cyberinsider.com/active-exploitation-of-xss-flaws-in-popular-wordpress-plugins/ Active Exploitation of XSS Flaws in Popular WordPress Plugins | CyberInsider Jun 10, 2024 - Fastly has detected active exploitation targeting three high-severity CVEs in WordPress plugins, exploiting unauthenticated stored XSS bugs. popular wordpress pluginsactive exploitationxssflaws https://thehackernews.com/2022/10/fortinet-warns-of-active-exploitation.html Fortinet Warns of Active Exploitation of Newly Discovered Critical Auth Bypass Bug Fortinet warns that the newly discovered critical vulnerability affecting its firewall and proxy products is being actively exploited in the wild. active exploitationfortinetwarns https://thehackernews.com/2024/05/researchers-uncover-active-exploitation.html?m=1 Researchers Uncover Active Exploitation of WordPress Plugin Vulnerabilities Researchers have discovered several vulnerabilities in popular WordPress plugins that allow attackers to create rogue admin accounts. active exploitationwordpress pluginresearchersuncovervulnerabilities https://thehackernews.com/2024/11/cisa-alerts-to-active-exploitation-of.html?ref=secretciso.org CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability CISA alerts to active exploits in Palo Alto, CyberPanel, and Android, urging urgent fixes palo alto networksactive exploitationcisaalerts https://thehackernews.com/2023/09/new-libwebp-vulnerability-under-active.html Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score Libwebp image library under attack! A new CVE-2023-5129 has emerged, scoring a maximum 10.0 on CVSS. Get the details now active exploitationcriticalvulnerabilitygetsmaximum https://www.rapid7.com/blog/post/2025/04/28/etr-active-exploitation-of-sap-netweaver-visual-composer-cve-2025-31324/?ref=metacurity.com Active Exploitation of SAP NetWeaver Visual Composer CVE-2025-31324 | Rapid7 Blog On 4/24/25, enterprise resource planning company SAP published CVE-2025-31324, a zero-day vulnerability in NetWeaver Visual Composer that carries a CVSSv3... sap netweaver visual composeractive exploitation https://thehackernews.com/2024/11/cisa-alerts-to-active-exploitation-of.html CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability CISA alerts to active exploits in Palo Alto, CyberPanel, and Android, urging urgent fixes palo alto networksactive exploitationcisaalerts https://www.microsoft.com/en-us/security/blog/2025/07/22/disrupting-active-exploitation-of-on-premises-sharepoint-vulnerabilities/ Disrupting active exploitation of on-premises SharePoint vulnerabilities | Microsoft Security Blog Jul 29, 2025 - Microsoft has observed two named Chinese nation-state actors, Linen Typhoon and Violet Typhoon, exploiting vulnerabilities targeting internet-facing SharePoint... active exploitationmicrosoft securitydisrupting https://thehackernews.com/2024/02/cisa-warns-of-active-exploitation-of.html?version=meter+at+null CISA Warns of Active Exploitation Apple iOS and macOS Vulnerability Critical Apple kernel bug in iOS, macOS, and more exploited in the wild. CISA urges FCEB agencies to patch by February 21st. active exploitationapple ioscisawarnsmacos https://securityaffairs.com/181104/hacking/critical-fortisiem-flaw-under-active-exploitation-fortinet-warns.html Critical FortiSIEM flaw under active exploitation, Fortinet warns Aug 13, 2025 - Fortinet warns of a critical FortiSIEM vulnerability, tracked as CVE-2025-25256, that is actively exploited in attacks in the wild. active exploitationcriticalfortisiemflawfortinet https://www.cybersecuritydive.com/news/ivanti-connect-secure-active-exploitation/704334/ Ivanti Connect Secure devices face active exploitation, patch schedule staggered | Cybersecurity... Unauthenticated attackers can take control of systems by exploiting the zero days, which a suspected state-linked threat actor is chaining together. secure devicesactive exploitationivanticonnectface https://www.techtarget.com/searchsecurity/news/252525956/Critical-Fortinet-vulnerability-under-active-exploitation Critical Fortinet vulnerability under active exploitation | TechTarget Fortinet on Monday said an authentication bypass vulnerability for three of its services has been exploited in the wild. active exploitationcriticalfortinetvulnerabilitytechtarget https://cyberinsider.com/google-confirms-active-exploitation-of-recently-patched-chrome-vulnerability/ Google Confirms Active Exploitation of Recently Patched Chrome Vulnerability | CyberInsider Aug 27, 2024 - Google recently updated its Chrome Security Bulletin to reveal that a previously patched flaw in the browser is now exploited in the wild. active exploitationgoogleconfirmsrecentlypatched https://www.cybersecuritydive.com/news/palo-alto-networks-firewall-exploitation/740193/ Palo Alto Networks warns firewall vulnerability is under active exploitation | Cybersecurity Dive The flaw, when chained together with a prior vulnerability, can allow an attacker to gain access to unpatched firewalls. palo alto networks https://thehackernews.com/2026/02/cisa-flags-four-security-flaws-under.html?version=meter+at+null CISA Flags Four Security Flaws Under Active Exploitation in Latest KEV Update CISA adds four actively exploited vulnerabilities to its KEV catalog, including Chrome RCE, Zimbra SSRF, Windows ActiveX, and ThreatSonar flaws. security flaws https://thehackernews.com/2024/12/cisa-adds-acclaim-usaherds.html CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation CISA adds CVE-2021-44207 to KEV catalog for active exploitation risk. Agencies must patch by Jan 13, 2025, to mitigate remote code execution. cisaaddsacclaimvulnerability https://hashnode.com/posts/active-directory-enumeration-and-exploitation/684d422b21c32799b7ab9872 Discussion on "Active Directory Enumeration & Exploitation" | Hashnode active directorydiscussionenumerationexploitationhashnode https://thehackernews.com/2025/02/cisa-adds-microsoft-and-zimbra-flaws-to.html?version=meter+at+null CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation CISA adds Microsoft Partner Center and Zimbra ZCS flaws to its KEV catalog, citing active exploitation. Federal agencies must patch by March 18 to mit https://thehackernews.com/2023/07/zimbra-warns-of-critical-zero-day-flaw.html Zimbra Warns of Critical Zero-Day Flaw in Email Software Amid Active Exploitation Zimbra users, be cautious! Zimbra has warned of an actively exploited zero-day vulnerability in its software. Apply the manual fix ASAP to eliminate zero day flaw https://thehackernews.com/2025/12/critical-react2shell-flaw-added-to-cisa.html Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation CISA flags the React2Shell remote code flaw after real-world attacks hit millions of exposed services. criticalreact2shellflawadded https://www.trendmicro.com/en_us/research/23/d/update-now-papercut-vulnerability-cve-2023-27350-under-active-ex.html Update Now PaperCut Vulnerability CVE-2023-27350 Under Active Exploitation | Trend Micro (US) https://thehackernews.com/2023/07/zimbra-warns-of-critical-zero-day-flaw.html?m=1 Zimbra Warns of Critical Zero-Day Flaw in Email Software Amid Active Exploitation Zimbra users, be cautious! Zimbra has warned of an actively exploited zero-day vulnerability in its software. Apply the manual fix ASAP to eliminate zero day flaw https://thehackernews.com/2025/02/cisa-adds-microsoft-and-zimbra-flaws-to.html?rand=1734 CISA Adds Microsoft and Zimbra Flaws to KEV Catalog Amid Active Exploitation CISA adds Microsoft Partner Center and Zimbra ZCS flaws to its KEV catalog, citing active exploitation. Federal agencies must patch by March 18 to mit https://thehackernews.com/2025/08/trend-micro-confirms-active.html?version=meter+at+null Trend Micro Confirms Active Exploitation of Critical Apex One Flaws in On-Premise Systems Trend Micro flaws let attackers run code remotely on Apex One systems; on-premise users must apply fixes now. https://thehackernews.com/2025/10/microsoft-issues-emergency-patch-for.html Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation Microsoft releases urgent fix for critical WSUS flaw CVE-2025-59287 under active exploitation. newlypatchedcriticalmicrosoftwsus https://cyberscoop.com/palo-alto-expedition-firewall-exploit-cisa-kev/ More bugs in Palo Alto Expedition see active exploitation, CISA warns | CyberScoop Nov 15, 2024 - Hackers have been actively targeting the firewall management software through multiple vulnerabilities. palo alto https://www.pluralsight.com/courses/active-directory-exploitation Active Directory Exploitation active directoryexploitation https://thehackernews.com/2026/05/ivanti-epmm-cve-2026-6973-rce-under.html Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access Ivanti EPMM flaw CVE-2026-6973 exploited in limited attacks; CISA mandates fixes by May 10, 2026, increasing urgency. https://thehackernews.com/2023/06/experts-unveil-poc-exploit-for-recent.html?version=meter+at+null Experts Unveil Exploit for Recent Windows Vulnerability Under Active Exploitation Experts Unveil Exploit for Recent Windows Vulnerability Under Active Exploitation | Read more hacking news on The Hacker News cybersecurity news website and... recent windowsexpertsunveilexploitvulnerability https://thehackernews.com/2024/01/40000-attacks-in-3-days-critical.html?m=1 ~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation Hackers are actively exploiting a critical Atlassian Confluence flaw (CVE-2023-22527) within days of its reveal. in 3 days40 000 https://www.sophos.com/en-us/blog/cisco-sd-wan-vulnerabilities-cve-2026-20127-cve-2022-20775-in-active-exploitation Cisco SD WAN vulnerabilities (CVE-2026-20127, CVE-2022-20775) in active exploitation | SOPHOS On February 25, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and UK National Cyber Security Centre warned that vulnerabilities... https://securityaffairs.com/146457/security/cisa-warns-samsung-flaw.html US CISA warns of a Samsung vulnerability under active exploitation May 20, 2023 - US CISA added the vulnerability CVE-2023-21492 flaw affecting Samsung devices to its Known Exploited Vulnerabilities Catalog. uscisawarnssamsungvulnerability https://thehackernews.com/2024/03/cisa-alerts-on-active-exploitation-of.html?rand=1734 CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products CISA adds 3 security flaws to its Known Exploited Vulnerabilities catalog, citing active exploitation evidence