Indicators of Compromise

SecurityWeek 📡 RSS May 15

Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026

CVEs: CVE-2026-20182

SecurityWeek →

GBHackers 📡 RSS May 15

Next.js Security Flaw Leaks Cloud Credentials, API Keys, and Admin Interfaces

CVEs: CVE-2026-44578

GBHackers →

The Hacker News 📡 RSS May 15

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

CVEs: CVE-2026-42897

The Hacker News →

The Hacker News 📡 RSS May 15

CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

CVEs: CVE-2026-20182

The Hacker News →

GBHackers 📡 RSS May 15

Palo Alto Firewalls Hit by Zero-Day Allowing Arbitrary Code Execution as Root

CVEs: CVE-2026-0300

GBHackers →

SANS ISC 📡 RSS May 15

ISC Stormcast For Friday, May 15th, 2026 https://isc.sans.edu/podcastdetail/9934, (Fri, May 15th)

SANS ISC →

Tenable Blog 📡 RSS May 15

Frequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN vulnerabilities (CVE-2026-20182)

CVEs: CVE-2026-20182

Tenable Blog →

SC Media 📡 RSS May 14

Two vulnerabilities found in popular WordPress plugin Avada Builder

CVEs: CVE-2026-4782 CVE-2026-4798

SC Media →

CSO Online 📡 RSS May 14

AI agent finds 18-year-old remote code execution flaw in Nginx

CVEs: CVE-2026-42945

CSO Online →

BleepingComputer 📡 RSS May 14

Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

CVEs: CVE-2026-20182

BleepingComputer →

Tenable Blog 📡 RSS May 14

Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation

CVEs: CVE-2026-46300

Tenable Blog →

Rapid7 Blog 📡 RSS May 14

CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS

CVEs: CVE-2026-0265

Rapid7 Blog →

Security Affairs 📡 RSS May 14

U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog

CVEs: CVE-2026-20182

Security Affairs →

Security Affairs 📡 RSS May 14

Linux Kernel bug Fragnesia allows local root access attacks

CVEs: CVE-2026-46300

Security Affairs →

The Hacker News 📡 RSS May 14

Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access

CVEs: CVE-2026-20182

The Hacker News →

Rapid7 Blog 📡 RSS May 14

CVE-2026-20182: Critical authentication bypass in Cisco Catalyst SD-WAN Controller (FIXED)

CVEs: CVE-2026-20182 CVE-2026-20127

Rapid7 Blog →

Security Affairs 📡 RSS May 14

Broadcom releases VMware Fusion security update for root access bug

CVEs: CVE-2026-41702

Security Affairs →

SC Media 📡 RSS May 14

Critical Quest KACE SMA flaw exploited after 10 months

CVEs: CVE-2025-32975

SC Media →

Help Net Security 📡 RSS May 14

Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)

CVEs: CVE-2026-46300 CVE-2026-43284

Help Net Security →

SecurityWeek 📡 RSS May 14

New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation

CVEs: CVE-2026-46300

SecurityWeek →