Contact Privacy DMCA Patreon

Robuta
https://www.itpro.com/security/two-fortinet-vulnerabilities-are-being-exploited-in-the-wild-patch-now Two Fortinet vulnerabilities are being exploited in the wild – patch now | IT Pro Dec 19, 2025 - Arctic Wolf and Rapid7 have urged security teams to act immediately to mitigate two critical Fortinet vulnerabilities. being exploited in the wildtwofortinetvulnerabilities https://cybersecuritynews.com/fortinet-disabled-forticloud-sso-0-day/ Fortinet Disables FortiCloud SSO Following 0-day Vulnerability Exploited in the Wild Jan 28, 2026 - Fortinet temporarily disabled its FortiCloud Single Sign-On (SSO) service after confirming active exploitation of a zero-day authentication bypass... exploited in the wildfortinetdisablesforticloudsso https://www.rapid7.com/blog/post/etr-critical-cisco-catalyst-vulnerability-exploited-in-the-wild-cve-2026-20127/ Critical Cisco Catalyst Vulnerability Exploited in the wild (CVE-2026-20127) On February 25, 2026, Cisco disclosed a critical authentication bypass vulnerability in Cisco Catalyst SD‑WAN Controller and Cisco Catalyst SD‑WAN Manager,... exploited in the wildcriticalciscocatalystvulnerability https://www.csoonline.com/article/4152658/5-month-old-f5-big-ip-dos-bug-becomes-critical-rce-exploited-in-the-wild.html 5-month-old F5 BIG-IP DoS bug becomes critical RCE exploited in the wild | CSO Online Mar 31, 2026 - Reclassified as a remote code execution flaw, the F5 BIG-IP APM vulnerability has been upgraded to CVSS 9.8, requiring immediate patching and compromise... exploited in the wildf5 big ip https://www.pwndefend.com/2025/11/13/suspected-fortinet-zero-day-exploited-in-the-wild/ Suspected Fortinet Zero Day Exploited in the Wild – PwnDefend exploited in the wildzero daysuspectedfortinet https://securityonline.info/cpanel-authentication-security-update-2026/ Exploited in the Wild: PoC Released for cPanel CVE-2026-41940 Authentication Bypass Zero-Day Apr 29, 2026 - cPanel issues emergency patches for a critical authentication vulnerability affecting all supported versions. Run /scripts/upcp --force immediately to patch. exploited in the wildfor cpanelauthentication bypass https://threatprotect.qualys.com/2026/03/16/google-patches-two-chrome-vulnerabilities-exploited-in-the-wild-cve-2026-3909-cve-2026-3910/ Google Patches Two Chrome Vulnerabilities Exploited in the Wild (CVE-2026-3909 & CVE-2026-3910) –... exploited in the wildgooglepatchestwochrome https://www.rapid7.com/blog/post/crushftp-zero-day-exploited-in-the-wild/ CVE-2025-54309: Crush FTP Vulnerability Exploited in the Wild On July 18, 2025, CrushFTP disclosed CVE-2025-54309, a critical vulnerability affecting versions below 10.8.5 and 11.3.4_23 across all platforms. exploited in the wildcvecrushftpvulnerability https://www.datacenterknowledge.com/cybersecurity/maximum-severity-hpe-oneview-flaw-exploited-in-the-wild Maximum Severity HPE OneView Flaw Exploited in the Wild Jan 9, 2026 - Exploitation of CVE-2025-37164 can enable remote code execution on HPE's IT infrastructure management platform, leading to devastating consequences. exploited in the wildmaximumseverityhpeoneview https://www.rapid7.com/blog/post/etr-critical-ivanti-endpoint-manager-mobile-epmm-zero-day-exploited-in-the-wild-eitw-cve-2026-1281-1340/ Critical Ivanti Endpoint Manager Mobile (EPMM) zero-day exploited in the wild (CVE-2026-1281 &... On January 29, 2026, Ivanti disclosed two new critical vulnerabilities affecting Endpoint Manager Mobile (EPMM): CVE-2026-1281 and CVE-2026-1340. The vendor... exploited in the wildendpoint manager https://www.itpro.com/security/apple-just-released-an-emergency-patch-for-a-zero-day-exploited-in-the-wild-heres-why-you-need-to-update-now Apple just released an emergency patch for a zero-day exploited in the wild – here’s why you need... Aug 21, 2025 - Apple is warning millions of users of iPhones, iPads and Macs to update their software to protect against an out-of-bounds write vulnerability. exploited in the wild https://unit42.paloaltonetworks.com/microsoft-cve-2025-59287/ Microsoft WSUS Remote Code Execution (CVE-2025-59287) Actively Exploited in the Wild (Updated... CVE-2025-59287 is a critical RCE vulnerability identified in Microsoft’s WSUS. Our observations from cases show a consistent methodology. exploited in the wildremote code executionmicrosoftwsus https://www.helpnetsecurity.com/2026/04/17/microsoft-defender-zero-days-exploited/ Researcher drops two more Microsoft Defender zero-days, all three now exploited in the wild - Help... The researcher who earlier this month published a PoC exploit for a zero-day LPE vulnerability in Microsoft Defender is back with two more. exploited in the wild https://cyberinsider.com/new-redsun-windows-defender-zero-day-exploited-in-the-wild/ New “RedSun” Windows Defender zero-day exploited in the wild Apr 17, 2026 - A newly disclosed Windows zero-day dubbed “RedSun” is being actively exploited in the wild to gain SYSTEM privileges via Microsoft Defender. exploited in the wildwindows defenderzero daynew https://www.infosecurity-magazine.com/news/nginx-ui-mcp-flaw-actively/ Critical Nginx-ui MCP Flaw Actively Exploited in the Wild - Infosecurity Magazine Apr 21, 2026 - Critical nginx-ui MCP authentication bypass CVE-2026-33032 actively exploited with CVSS 9.8 exploited in the wild