Security Bulletins

Active threat advisories and known exploited vulnerabilities.

Pulled daily from the CISA Known Exploited Vulnerabilities catalog. Every entry has confirmed active exploitation in the wild. Last synced Jun 12, 2026.

1,619 total bulletins 1,619 critical or high severity Source: CISA KEV + NVD
All 1,619 Critical 1,619 High 0 Medium 0 Low 0 1,619 critical entries
Critical CVE-2026-35273 Oracle · PeopleSoft Enterprise PeopleTools Added Jun 12, 2026

Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability

Oracle PeopleSoft Enterprise PeopleTools contains a missing authentication for critical function vulnerability which could allow an unauthenticated attacker to obtain takeover of PeopleSoft Enterprise PeopleTools.

NVD Detail ↗ CISA KEV ↗ Patch by Jun 15, 2026
Critical CVE-2026-10520 Ivanti · Sentry Added Jun 11, 2026

Ivanti Sentry OS Command Injection Vulnerability

Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level remote code execution. This vulnerability can be successfully exploited in cases where the Sentry appliance is in an unmanaged state with its endpoints externally reachable. The use of mTLS with EPMM or restricted HTTPS access through Neurons for MDM makes interfaces inaccessible to external actors.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-7473 Arista · Extensible Operating System Added Jun 9, 2026

Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability

Arista Extensible Operating System (EOS) contains an incomplete comparison with missing factors vulnerability when the switch incorrectly decapsulate and forwards other unexpected tunneled packet with a destination IP matching its configured decapsulation IP.

NVD Detail ↗ CISA KEV ↗ Patch by Jun 23, 2026
Critical CVE-2026-20245 Cisco · Catalyst SD-WAN Manager Added Jun 9, 2026

Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability

Cisco Catalyst SD-WAN Manager formerly SD-WAN vManage contains an improper encoding or escaping of output vulnerability. This vulnerability could allow an authenticated, local attacker to execute arbitrary commands as root by supplying a crafted file to the affected system.

NVD Detail ↗ CISA KEV ↗ Patch by Jun 23, 2026
Critical CVE-2026-11645 Google · Chromium V8 Added Jun 9, 2026

Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

NVD Detail ↗ CISA KEV ↗ Patch by Jun 23, 2026
Critical CVE-2026-42271 BerriAI · LiteLLM Added Jun 8, 2026

BerriAI LiteLLM Command Injection Vulnerability

BerriAI LiteLLM contains a command injection vulnerability that could allow any authenticated user, including holders of low-privilege internal-user keys, to run arbitrary commands on the host.

NVD Detail ↗ CISA KEV ↗ Patch by Jun 22, 2026
Critical CVE-2026-50751 Check Point · Security Gateway Added Jun 8, 2026

Check Point Security Gateway Improper Authentication Vulnerability

Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authentication and establish a remote access VPN connection without a valid user password.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-28318 SolarWinds · Serv-U Added Jun 5, 2026

SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability

SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: deflate header to crash the Serv-U service without authentication.

NVD Detail ↗ CISA KEV ↗ Patch by Jun 19, 2026
Critical CVE-2026-45247 Mirasvit · Mirasvit Full Page Cache Warmer Added Jun 3, 2026

Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability

Mirasvit Full Page Cache Warmer contains a deserialization of untrusted data vulnerability that could allow unauthenticated attackers to achieve remote code execution by supplying a crafted serialized PHP object in the CacheWarmer cookie.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2022-0492 Linux · Kernel Added Jun 2, 2026

Linux Kernel Improper Authentication Vulnerability

Linux Kernel contains an improper authentication vulnerability which could allow for privilege escalation via the cgroups v1 release_agent feature.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-48595 Android · Framework Added Jun 2, 2026

Android Framework Integer Overflow Vulnerability

Android Framework contains an integer overflow vulnerability that allows for code execution that could allow for local privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2024-21182 Oracle · WebLogic Server Added Jun 1, 2026

Oracle WebLogic Server Unspecified Vulnerability

Oracle WebLogic contains an unspecified vulnerability that could allow an unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-0257 Palo Alto Networks · PAN-OS Added May 29, 2026

Palo Alto Networks PAN-OS Authentication Bypass Vulnerability

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-48027 Nx · Nx Console Added May 27, 2026

Nx Console Embedded Malicious Code Vulnerability

Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfuscated payload that could harvested credentials from multiple sources on disk and in memory.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-45321 TanStack · TanStack Added May 27, 2026

TanStack Unspecified Vulnerability

TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a trusted identity.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-8398 Daemon · Daemon Tools Lite Added May 27, 2026

Daemon Tools Lite Embedded Malicious Code Vulnerability

Daemon Tools contains an unspecified vulnerability that has a high impact on confidentiality, integrity, and availability.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-48172 LiteSpeed · cPanel Plugin Added May 26, 2026

LiteSpeed cPanel Plugin Privilege Escalation Vulnerability

LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-9082 Drupal · Core Added May 22, 2026

Drupal Core SQL Injection Vulnerability

Drupal Core contains a SQL injection vulnerability that could allow for privilege escalation and remote code execution via specially crafted requests sent with the database abstraction API.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2025-34291 Langflow · Langflow Added May 21, 2026

Langflow Origin Validation Error Vulnerability

Langflow contains an origin validation error vulnerability in which an overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=None allows a malicious webpage to perform cross-origin requests that include credentials and successfully call the refresh endpoint. This could allow the attacker to execute arbitrary code and achieve full system compromise via obtained tokens that permit access to authenticated endpoints.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-34926 Trend Micro · Apex One Added May 21, 2026

Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability

Trend Micro Apex One (on-premise) contains a directory traversal vulnerability that could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2010-0806 Microsoft · Internet Explorer Added May 20, 2026

Microsoft Internet Explorer Use-After-Free Vulnerability

Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-45498 Microsoft · Defender Added May 20, 2026

Microsoft Defender Denial of Service Vulnerability

Microsoft Defender contains an unspecified vulnerability that allows for denial of service.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2026-41091 Microsoft · Defender Added May 20, 2026

Microsoft Defender Link Following Vulnerability

Microsoft Defender contains a link following vulnerability that allows an authorized attacker to elevate privileges locally.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2010-0249 Microsoft · Internet Explorer Added May 20, 2026

Microsoft Internet Explorer Use-After-Free Vulnerability

Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2008-4250 Microsoft · Windows Added May 20, 2026

Microsoft Windows Buffer Overflow Vulnerability

Microsoft Windows contains a buffer overflow vulnerability in the Windows Server Service that allows remote attackers to execute arbitrary code via a crafted RPC request that triggers an overflow during path canonicalization.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Need help prioritizing these vulnerabilities?

ThreatGrid can assess your environment and map active CVEs to your monitored assets.