Vulnerability Intelligence Report — July 6, 2026
Vulnerability Intelligence Report — July 6, 2026 New CISA KEV: 0 | KEV calendar still clear | FortiBleed traced to INC and Lynx ransomware | … Read More
Vulnerability Intelligence Report — July 6, 2026 New CISA KEV: 0 | KEV calendar still clear | FortiBleed traced to INC and Lynx ransomware | … Read More
CVE: CVE-2026-25089, CVE-2026-26083 | CVSS 3.1: 9.8 (Critical) | Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | CWE: CWE-78 (OS Command Injection), CWE-862 (Missing Authorization) | Vendor: Fortinet | Product: … Read More
What Is the Vulnerability A vulnerability in WinRAR’s handling of recovery volumes (REV files) allows attackers to execute arbitrary code on the user’s system. When … Read More
What Happened A threat actor group operating under the banner “FortiBleed” has been systematically compromising Fortinet FortiGate firewalls and VPN gateways using previously stolen credentials … Read More
Vulnerability Intelligence Report — July 5, 2026 New CISA KEV: 0 | KEV calendar clear for the first time this week | FortiBleed: 74K Fortinet … Read More
CVE: CVE-2026-38192 through CVE-2026-38198 (7 total) | Vendor/Product: FatFs — Generic FAT/exFAT Filesystem Module (ChaN) What Is the Vulnerability Seven new CVEs have been disclosed … Read More
TTP Advisory: AI Agent Prompt Injection via SEO and Hidden HTML | Target: AI Coding Assistants, Research Agents, Browser Agents What Is the Attack Technique … Read More
CVE: N/A (TTP Advisory) | CVSS: N/A | Vendor: N/A | Product: Developer and Security Tools (Supply Chain) What Is the Advisory The FBI has … Read More
CVE: CVE-2026-54998, CVE-2026-41106 | CVSS: Critical (Microsoft severity rating) | Vendor: Microsoft | Product: Exchange Online, Microsoft 365 Copilot What Is the Vulnerability Two critical … Read More
CVE: CVE-2026-46242 | CVSS: 7.8 (High) | Vendor: Linux Kernel | Product: epoll subsystem What Is the Vulnerability CVE-2026-46242, dubbed “Bad Epoll,” is a critical … Read More