CISA Known Exploited Vulnerability (KEV): This vulnerability has been added to the CISA Known Exploited Vulnerabilities Catalog on 2026-05-27 with a required action date of … Read More
CISA Known Exploited Vulnerability (KEV): This vulnerability has been added to the CISA Known Exploited Vulnerabilities Catalog on 2026-05-29 with a required action date of … Read More
Critical vulnerabilities in Ivanti Sentry (formerly MobileIron Sentry) enable remote attackers to take over affected gateway appliances. Ivanti Sentry serves as the secure gateway between … Read More
A critical remote code execution vulnerability in Veeam Backup & Replication allows attackers to execute arbitrary code on backup servers. Veeam is the most widely … Read More
Vulnerability Intelligence Report — June 11, 2026 Coverage: June 10–11, 2026 | New CISA KEV additions: 0 | KEV deadlines today: 1 | Patch Tuesday … Read More
An uncontrolled resource consumption vulnerability in SolarWinds Serv-U, tracked as CVE-2026-28318, allows unauthenticated attackers to crash the Serv-U service by sending crafted POST requests with … Read More
A vulnerability in Arista Extensible Operating System (EOS), tracked as CVE-2026-7473, causes switches to incorrectly decapsulate and forward unexpected tunneled packets when tunnel decapsulation configurations … Read More
A deserialization vulnerability in Nuance PowerScribe, tracked as CVE-2026-26142 (CVSS 9.8), allows an unauthorised attacker to execute arbitrary code over a network. Nuance PowerScribe is … Read More
A denial-of-service vulnerability in Spring Framework’s Expression Language (SpEL) evaluation, tracked as CVE-2026-41851, allows attackers to trigger unbounded cache growth by supplying crafted SpEL expressions. … Read More
An out-of-bounds read and write vulnerability in Google Chromium’s V8 JavaScript engine, tracked as CVE-2026-11645, allows a remote attacker to execute arbitrary code inside the … Read More
