Security Bulletins

Active threat advisories and known exploited vulnerabilities.

Pulled daily from the CISA Known Exploited Vulnerabilities catalog. Every entry has confirmed active exploitation in the wild. Last synced Jun 12, 2026.

1,619 total bulletins 1,619 critical or high severity Source: CISA KEV + NVD
All 1,619 Critical 1,619 High 0 Medium 0 Low 0 1,619 entries
Critical CVE-2026-34197 Apache · ActiveMQ Added Apr 16, 2026

Apache ActiveMQ Improper Input Validation Vulnerability

Apache ActiveMQ contains an improper input validation vulnerability that allows for code injection.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2009-0238 Microsoft · Office Added Apr 14, 2026

Microsoft Office Remote Code Execution

Microsoft Office Excel contains a remote code execution vulnerability that could allow an attacker to take complete control of an affected system if a user opens a specially crafted Excel file that includes a malformed object.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-32201 Microsoft · SharePoint Server Added Apr 14, 2026

Microsoft SharePoint Server Improper Input Validation Vulnerability

Microsoft SharePoint Server contains an improper input validation vulnerability that allows an unauthorized attacker to perform spoofing over a network.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2012-1854 Microsoft · Visual Basic for Applications (VBA) Added Apr 13, 2026

Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability

Microsoft Visual Basic for Applications (VBA) contains an insecure library loading vulnerability that could allow for remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-60710 Microsoft · Windows Added Apr 13, 2026

Microsoft Windows Link Following Vulnerability

Microsoft Windows contains a link following vulnerability that allows for privilege escalation

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-21529 Microsoft · Exchange Server Added Apr 13, 2026

Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability

Microsoft Exchange Server contains a deserialization of untrusted data that allows an authenticated attacker to achieve remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-36424 Microsoft · Windows Added Apr 13, 2026

Microsoft Windows Out-of-Bounds Read Vulnerability

Microsoft Windows Common Log File System Driver contains an out-of-bounds read vulnerability that could allow a threat actor for privileges escalation

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2020-9715 Adobe · Acrobat Added Apr 13, 2026

Adobe Acrobat Use-After-Free Vulnerability

Adobe Acrobat contains a use-after-free vulnerability that allows for code execution

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-21643 Fortinet · FortiClient EMS Added Apr 13, 2026

Fortinet FortiClient EMS SQL Injection Vulnerability

Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-34621 Adobe · Acrobat and Reader Added Apr 13, 2026

Adobe Acrobat and Reader Prototype Pollution Vulnerability

Adobe Acrobat and Reader contain a prototype pollution vulnerability that allows for arbitrary code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-1340 Ivanti · Endpoint Manager Mobile (EPMM) Added Apr 8, 2026

Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability

Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-35616 Fortinet · FortiClient EMS Added Apr 6, 2026

Fortinet FortiClient EMS Improper Access Control Vulnerability

Fortinet FortiClient EMS contains an improper access control vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-3502 TrueConf · Client Added Apr 2, 2026

TrueConf Client Download of Code Without Integrity Check Vulnerability

TrueConf Client contains a download of code without integrity check vulnerability. An attacker who is able to influence the update delivery path can substitute a tampered update payload. If the payload is executed or installed by the updater, this may result in arbitrary code execution in the context of the updating process or user.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-5281 Google · Dawn Added Apr 1, 2026

Google Dawn Use-After-Free Vulnerability

Google Dawn contains an use-after-free vulnerability that could allow a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. This vulnerability could affect multiple Chromium-based products including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-3055 Citrix · NetScaler Added Mar 30, 2026

Citrix NetScaler Out-of-Bounds Read Vulnerability

Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configured as a SAML IDP leading to memory overread.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-53521 F5 · BIG-IP Added Mar 27, 2026

F5 BIG-IP Stack-Based Buffer Overflow Vulnerability

F5 BIG-IP APM contains a stack-based buffer overflow vulnerability that could allow a threat actor to achieve remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-33634 Aquasecurity · Trivy Added Mar 26, 2026

Aquasecurity Trivy Embedded Malicious Code Vulnerability

Aquasecurity Trivy contains an embedded malicious code vulnerability that could allow an attacker to gain access to everything in the CI/CD environment, including all tokens, SSH keys, cloud credentials, database passwords, and any sensitive configuration in memory.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-33017 Langflow · Langflow Added Mar 25, 2026

Langflow Code Injection Vulnerability

Langflow contains a code injection vulnerability that could allow building public flows without requiring authentication.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-32432 Craft CMS · Craft CMS Added Mar 20, 2026

Craft CMS Code Injection Vulnerability

Craft CMS contains a code injection vulnerability that allows a remote attacker to execute arbitrary code.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-54068 Laravel · Livewire Added Mar 20, 2026

Laravel Livewire Code Injection Vulnerability

Laravel Livewire contain a code injection vulnerability that could allow unauthenticated attackers to achieve remote command execution in specific scenarios.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-43510 Apple · Multiple Products Added Mar 20, 2026

Apple Multiple Products Improper Locking Vulnerability

Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locking vulnerability that could allow a malicious application to cause unexpected changes in memory shared between processes.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-43520 Apple · Multiple Products Added Mar 20, 2026

Apple Multiple Products Classic Buffer Overflow Vulnerability

Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability which could allow a malicious application to cause unexpected system termination or write kernel memory.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-31277 Apple · Multiple Products Added Mar 20, 2026

Apple Multiple Products Buffer Overflow Vulnerability

Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer overflow vulnerability that could allow the processing of maliciously crafted web content which may lead to memory corruption.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-20131 Cisco · Secure Firewall Management Center (FMC) Added Mar 19, 2026

Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability

Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management contain a deserialization of untrusted data vulnerability in the web-based management interface that could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-20963 Microsoft · SharePoint Added Mar 18, 2026

Microsoft SharePoint Deserialization of Untrusted Data Vulnerability

Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute code over a network.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Need help prioritizing these vulnerabilities?

ThreatGrid can assess your environment and map active CVEs to your monitored assets.