Microsoft Defender Zero-Days Actively Exploited: Patch Now
Microsoft confirmed active exploitation of two zero-day vulnerabilities, CVE-2026-41091 and CVE-2026-45498, in Microsoft Defender. CISA…
CISA Adds Ivanti EPMM Zero-Day CVE-2026-6973 to KEV Catalog
A high-severity Ivanti Endpoint Manager Mobile (EPMM) vulnerability, CVE-2026-6973, was added to the CISA Known…
CISA KEV: LiteSpeed cPanel Plugin CVE-2026-48172 Actively Exploited
LiteSpeed cPanel Plugin CVE-2026-48172 Actively Exploited On May 26, 2026, CISA added CVE-2026-48172 to its…
Microsoft Zero-Days: Defender & Exchange Exploited In-The-Wild
A critical cross-site scripting (XSS) vulnerability in Microsoft Exchange's Outlook Web Access (OWA), identified as…
Ivanti EPMM Zero-Day Exploited in Targeted Attacks, Patches
On May 8, 2026, Ivanti released security updates for its Endpoint Manager Mobile (EPMM) product…
Dirty Frag: New Linux Kernel Vulnerability Grants Root Access
Linux Kernel [CVE-2026-43284, CVE-2026-43500] New 'Dirty Frag' Vulnerability Grants Root Access A new critical vulnerability…
Critical cPanel Zero-Day Actively Exploited Since Feb
cPanel CVE-2026-41940 Actively Exploited Since February A critical cPanel zero-day authentication bypass, CVE-2026-41940, has been…
Critical cPanel Zero-Day CVE-2026-41940 Actively Exploited
A critical authentication bypass, CVE-2026-41940, in cPanel & WHM was actively exploited as a zero-day…