Skip to main content
← All Articles

Tag

#Active Exploitation

36 articles

Advertisement

VU
CRITICAL
Vulnerabilities

Cisco Unified Communications Manager: Urgent Patch for Active Exploitation

CISA mandates urgent patching for an actively exploited vulnerability in Cisco Unified Communications Manager, posing immediate risk to federal agencies and beyond.

Runtime Rebel Intel
4 min read·Jun 26, 2026
Cisco CUCM SSRF Flaw: Rapid Exploitation & Root Privilege Escalation
CRITICAL
Vulnerabilities

Cisco CUCM SSRF Flaw: Rapid Exploitation & Root Privilege Escalation

Attackers are rapidly weaponizing a Cisco Unified CM server-side request forgery (SSRF) flaw, escalating privileges to root. Immediate patching is critical.

Runtime Rebel Intel
5 min read·Jun 26, 2026
VU
CRITICAL
Vulnerabilities

CVE-2024-20230: Critical RCE in Cisco Unified CM Actively Exploited

Cisco confirms active exploitation of CVE-2024-20230, a critical 9.9 CVSS vulnerability in Unified Communications Manager. Urgent patching is required.

Runtime Rebel Intel
4 min read·Jun 24, 2026
VU
CRITICAL
Vulnerabilities

CVE-2026-54420: LiteSpeed cPanel Plugin Flaw Under Active Exploit

CISA warns of active exploitation targeting CVE-2026-54420 in LiteSpeed cPanel user-end plugin, urging immediate patching for server security.

Runtime Rebel Intel
4 min read·Jun 16, 2026
Fortinet FortiSandbox: Attackers Exploit CVE-2026-39813, -39808, -25089
CRITICAL
Vulnerabilities

Fortinet FortiSandbox: Attackers Exploit CVE-2026-39813, -39808, -25089

Critical Fortinet FortiSandbox vulnerabilities (CVE-2026-39813, CVE-2026-39808, CVE-2026-25089) are under active exploitation. Patch immediately.

Runtime Rebel Intel
4 min read·Jun 16, 2026
VU
CRITICAL
Vulnerabilities

CVE-2024-21182: Oracle WebLogic Server Under Active Exploitation

CISA added CVE-2024-21182, an unspecified vulnerability in Oracle WebLogic Server, to its KEV Catalog due to active exploitation. Immediate patching required.

Runtime Rebel Intel
5 min read·Jun 1, 2026
Palo Alto PAN-OS GlobalProtect VPN: Active Auth Bypass Exploitation
CRITICAL
Vulnerabilities

Palo Alto PAN-OS GlobalProtect VPN: Active Auth Bypass Exploitation

Urgent advisory on the active exploitation of an authentication bypass vulnerability affecting Palo Alto Networks PAN-OS GlobalProtect VPN. Patch immediately.

Runtime Rebel Intel
5 min read·Jun 1, 2026
VU
CRITICAL
Vulnerabilities

CVE-2024-10642: WP Maps Pro Exploited to Create WordPress Admin Accounts

Attackers are exploiting a critical privilege escalation flaw in the WP Maps Pro WordPress plugin to create rogue admin accounts without authentication.

Runtime Rebel Intel
3 min read·May 31, 2026
VU
CRITICAL
Vulnerabilities

CVE-2026-0257: Palo Alto PAN-OS Auth Bypass Under Active Attack

CISA adds CVE-2026-0257, an actively exploited authentication bypass in Palo Alto Networks PAN-OS, to its KEV catalog. Immediate patching is critical for all

Runtime Rebel Intel
4 min read·May 29, 2026
VU
CRITICAL
Vulnerabilities

Ghost CMS CVE-2022-41654: Over 700 Websites Compromised

Attackers are exploiting a critical Ghost CMS vulnerability to inject malicious scripts into sites belonging to Harvard, Oxford, and DuckDuckGo.

Runtime Rebel Intel
3 min read·May 25, 2026
VU
HIGH
Vulnerabilities

CVE-2026-9082: Drupal Core SQL Injection Under Active Exploitation

CISA adds CVE-2026-9082, a critical Drupal Core SQL Injection vulnerability, to KEV Catalog due to active exploitation. Immediate patching required for all organizations.

Runtime Rebel Intel
4 min read·May 23, 2026
VU
CRITICAL
Vulnerabilities

CVE-2026-9082: Drupal Under Active Exploitation – Patch Now

Critical Drupal vulnerability CVE-2026-9082 is actively exploited shortly after disclosure. Urgent patching is required to prevent compromise of thousands of websites.

Runtime Rebel Intel
4 min read·May 22, 2026