Weaver E-cology critical bug exploited in attacks since March
Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology…
On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
Ravie LakshmananMay 15, 2026Microsoft / Vulnerability Microsoft has disclosed a new security…
The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss
Written by Isaac Wuest, Principal Product Manager at HeroDevs. When security teams…
New Cisco DoS flaw requires manual reboot to revive devices
Cisco released security updates to fix a Crosswork Network Controller (CNC) and…
Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access
Ravie LakshmananMay 14, 2026Vulnerability / Network Security Cisco has released updates to…
Critical vm2 sandbox bug lets attackers execute code on hosts
A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping…
Hackers used AI to develop zero-day exploit for web admin tool
Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting…
PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
Ravie LakshmananMay 14, 2026Vulnerability / API Security Threat actors have been observed…
Microsoft May 2026 Patch Tuesday fixes 120 flaws, no zero-days
Tag CVE ID CVE Title Severity .NET CVE-2026-35433 .NET Elevation of Privilege…