Skip to main content
← All Articles

Tag

#Exploitation

23 articles

Advertisement

VU
CRITICAL
Vulnerabilities

Critical SimpleHelp Vulnerability Exploited for Malware Delivery

A critical vulnerability in SimpleHelp is actively exploited to deploy malware, targeting credentials, SSH keys, and crypto wallets. Immediate patching is essential.

Runtime Rebel Intel
4 min read·Jun 30, 2026
VU
HIGH
Vulnerabilities

CVE-2026-20230: Cisco Unified CM SSRF Actively Exploited

Cisco Unified CM Server is vulnerable to CVE-2026-20230, a high-severity SSRF flaw now under active exploitation. Patch immediately to prevent attacks.

Runtime Rebel Intel
4 min read·Jun 24, 2026
Ivanti Sentry Max-Severity Flaw Exploited Within 24 Hours
CRITICAL
Vulnerabilities

Ivanti Sentry Max-Severity Flaw Exploited Within 24 Hours

A critical Ivanti Sentry vulnerability was actively exploited within 24 hours of public disclosure. Defenders must patch immediately to prevent compromise.

Runtime Rebel Intel
3 min read·Jun 12, 2026
ServiceNow Flaw Exploited: Unauthenticated Access to Customer Instances
CRITICAL
Vulnerabilities

ServiceNow Flaw Exploited: Unauthenticated Access to Customer Instances

ServiceNow advises customers of a critical flaw leading to unauthorized access to hosted instances. Threat actors exploited this vulnerability; immediate patching is

Runtime Rebel Intel
5 min read·Jun 10, 2026
FortiClient EMS Critical Flaw Exploited for Credential Stealing
CRITICAL
Vulnerabilities

FortiClient EMS Critical Flaw Exploited for Credential Stealing

Threat actors are actively exploiting a critical, patched FortiClient EMS vulnerability to deploy credential-stealing malware, bypassing trusted endpoint security.

Runtime Rebel Intel
5 min read·May 28, 2026
CVE-2026-48172: LiteSpeed cPanel Plugin Privilege Escalation - Patch Now
CRITICAL
Vulnerabilities

CVE-2026-48172: LiteSpeed cPanel Plugin Privilege Escalation - Patch Now

Exploitation of CVE-2026-48172 in the LiteSpeed cPanel plugin allows local users to gain root access. Organizations should update to version 1.2.2 immediately.

Runtime Rebel Intel
3 min read·May 23, 2026
VU
CRITICAL
Vulnerabilities

Pwn2Own Berlin: Microsoft Exchange, Windows 11 Zero-Day Exploits

Zero-day vulnerabilities in Microsoft Exchange, Windows 11, and Red Hat Enterprise Linux demonstrated at Pwn2Own Berlin. Runtime Rebel details the impact.

Runtime Rebel Intel
4 min read·May 15, 2026
VU
CRITICAL
Vulnerabilities

CVE-2023-2523: Weaver E-cology RCE Exploitation and Mitigation

Threat actors are exploiting critical file upload flaws in Weaver E-cology software to achieve RCE. Learn how to detect and patch CVE-2023-2523 today.

Runtime Rebel Intel
3 min read·May 5, 2026
VU
CRITICAL
Vulnerabilities

April 2026 Patch Tuesday: SharePoint Zero-Day, BlueHammer, & Adobe RCE

Microsoft's April 2026 Patch Tuesday addresses 167 vulnerabilities, including a SharePoint Server zero-day, Windows Defender 'BlueHammer' flaw, and an actively exploited

Runtime Rebel Intel
4 min read·Apr 15, 2026
TH
INFO
Threat Intel

CISA KEV Remediation Exposes Human-Scale Security Limits

Analysis of 1 billion CISA KEV records by Qualys exposes critical vulnerabilities are often exploited before organizations can patch them, highlighting limits of

Runtime Rebel Intel
4 min read·Apr 10, 2026
VU
CRITICAL
Vulnerabilities

Ivanti CSA 4.6 Exploited via CVE-2024-9380: Migration Required

Attackers are actively exploiting Ivanti CSA 4.6 via CVE-2024-9379 and CVE-2024-9380. Learn how to detect these command injection exploits and migrate to version 5.0.

Runtime Rebel Intel
3 min read·Apr 8, 2026
TH
HIGH
Threat Intel

Vite Exposed Installs: Exploitation Attempts & Mitigation for CVE-2025-30208

Runtime Rebel warns of active exploitation attempts targeting exposed Vite development environments. Learn about CVE-2025-30208 and critical mitigation steps.

Runtime Rebel Intel
4 min read·Apr 2, 2026