CISA Mandates 48-Hour Drupal Patch — Active SQLi
CISA orders 48-hour Drupal patching for active SQLi exploitation, Dutch police seize 800 bulletproof hosting servers, Iran APT hits aviation sector.
Posts tagged: Cisa-Kev
Three CVSS 10.0 UniFi OS RCEs Patched by Ubiquiti
Ubiquiti patches three CVSS 10.0 UniFi OS RCEs, nation-state actors weaponize ROADtools for Azure AD recon, Apex One zero-day CVE-2026-34926 hits KEV.
CVE-2026-32202 & CVE-2026-41940: Vulnerability Analysis for CySA+ Study
Analyze CVE-2026-32202 (CVSS 4.3) and CVE-2026-41940 (CVSS 10.0) for CySA+ CS0-003: KEV, EPSS, MITRE ATT&CK, and risk-based triage.
Linux Kernel Zero-Day CVE-2026-31431 Exploited
CVE-2026-31431 Linux kernel zero-day hits CISA KEV with public PoC, 40,000 cPanel servers compromised in four days, Defender false-positives break TLS.
CISA Mandates Patch for Windows Shell CVE-2026-32202
CVE-2026-32202 Windows Shell zero-day confirmed exploited, CVE-2026-3854 GitHub RCE exposes private repos, CVE-2026-42208 LiteLLM SQLi hit in 36 hours.
Microsoft Defender Zero-Day Exploited Pre-Disclosure
CISA adds Microsoft Defender zero-day to KEV. Unit 42 Zealot AI agent pwns cloud. CanisterSprawl npm worm self-propagates. Talos Q1 2026 IR data.
ActiveMQ Code Injection Under Active Attack
ActiveMQ code injection exploited in the wild, 6,400 servers exposed. CISA adds 8 KEV flaws including Cisco SD-WAN. macOS LOTL techniques documented.
Apache ActiveMQ RCE CVE-2026-34197 Exploited in Wild
CVE-2026-34197 Apache ActiveMQ RCE added to CISA KEV, ZionSiphon targets water ICS, Sapphire Sleet hits macOS via ClickFix social engineering.
SAP Critical ABAP Patch — FortiClient EMS in CISA KEV
SAP patches critical ABAP flaw across 13+ products, CVE-2026-21643 FortiClient EMS added to CISA KEV, FBI dismantles W3LL phishing-as-a-service