Tag: cve-2026-21262

soc

CVE-2026-20253: CISA Warns of Actively Exploited Splunk Enterprise RCE

CVE-2026-20253: CISA Warns of Actively Exploited Splunk Enterprise RCE Splunk Enterprise admins should prioritize patching CVE-2026-20253, a critical vulnerability that allows a network-reachable, unauthenticated attacker to create or truncate arbitrary files on the Splunk server. Under certain conditions, this can be chained into remote code execution (RCE), making exposure the main risk driver. CISA has […]

Mehr lesen →
soc

CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root

CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root CVE-2026-20262 is a zero-day vulnerability in Cisco Catalyst SD-WAN Manager (formerly SD-WAN vManage) that lets an authenticated attacker with low privileges (at least write access) write files to unintended locations on the server. The flaw sits in the web UI / API file upload flow, where […]

Mehr lesen →
soc

CVE-2026-35273 in Oracle PeopleSoft PeopleTools EMHub Under Active Exploitation

CVE-2026-35273 in Oracle PeopleSoft PeopleTools EMHub Under Active Exploitation Oracle has disclosed CVE-2026-35273, a critical Remote Code Execution (RCE) zero-day vulnerability in Oracle PeopleSoft Enterprise PeopleTools, affecting the Updates Environment Management component (often referenced as Environment Management / EMHub). Multiple reports cite active exploitation in the wild, with activity attributed to ShinyHunters. This post covers […]

Mehr lesen →
soc

Ivanti Sentry’s CVE-2026-10520 Enables Root RCE

Ivanti Sentry’s CVE-2026-Adresse geschuetztRoot RCE CVE-2026-10520 is a critical OS command injection vulnerability in Ivanti Sentry that can allow a remote, unauthenticated attacker to execute commands as root on vulnerable appliances. The issue is reachable over the network with no credentials or user interaction, and it carries a critical severity score. Ivanti has released […]

Mehr lesen →
soc

CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751)

CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751) CISA added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog on June 8, 2026: CVE-2026-42271 in BerriAI LiteLLM and CVE-2026-50751 in Check Point Security Gateway. Both issues affect high-value parts of modern enterprise environments. LiteLLM often sits between users, applications, and […]

Mehr lesen →
soc

CVE-2026-20230: Cisco Unified CM WebDialer SSRF Can Lead to Root-Level Compromise

CVE-2026-20230: Cisco Unified CM WebDialer SSRF Can Lead to Root-Level Compromise Cisco has released fixes for CVE-2026-20230, an unauthenticated remote vulnerability affecting Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (SME). The flaw is an SSRF issue that can be chained into an arbitrary file write on the underlying operating system, […]

Mehr lesen →