Skip to main content
← All Articles

Tag

#SSRF

9 articles

Advertisement

Cisco CUCM SSRF Flaw: Rapid Exploitation & Root Privilege Escalation
CRITICAL
Vulnerabilities

Cisco CUCM SSRF Flaw: Rapid Exploitation & Root Privilege Escalation

Attackers are rapidly weaponizing a Cisco Unified CM server-side request forgery (SSRF) flaw, escalating privileges to root. Immediate patching is critical.

Runtime Rebel Intel
5 min read·Jun 26, 2026
VU
HIGH
Vulnerabilities

CVE-2026-20230: Cisco Unified CM SSRF Actively Exploited

Cisco Unified CM Server is vulnerable to CVE-2026-20230, a high-severity SSRF flaw now under active exploitation. Patch immediately to prevent attacks.

Runtime Rebel Intel
4 min read·Jun 24, 2026
Dify AI Platform Vulnerabilities: How to Mitigate DifyTap Exploit
HIGH
Vulnerabilities

Dify AI Platform Vulnerabilities: How to Mitigate DifyTap Exploit

Researchers discover DifyTap vulnerabilities in the Dify AI platform, allowing attackers to exfiltrate chat histories and secrets through SSRF and RCE.

Runtime Rebel Intel
3 min read·Jun 23, 2026
Cisco Unified CM RCE via CVE-2026-20230 — Mitigation Guide
HIGH
Vulnerabilities

Cisco Unified CM RCE via CVE-2026-20230 — Mitigation Guide

Cisco patches CVE-2026-20230, a high-severity SSRF in Unified Communications Manager. Learn how public PoC code impacts your security and find remediation steps.

Runtime Rebel Intel
3 min read·Jun 4, 2026
VU
CRITICAL
Vulnerabilities

VMware Workspace ONE Access RCE via CVE-2022-22960 — Patch Now

VMware Workspace ONE Access and Identity Manager face critical RCE vulnerabilities (CVE-2022-22960, CVE-2022-22957) actively exploited. Patch immediately to secure

Runtime Rebel Intel
5 min read·May 29, 2026
VU
CRITICAL
Vulnerabilities

SAP S/4HANA and Commerce Cloud Critical Vulnerabilities — Patch Now

SAP addresses critical vulnerabilities in S/4HANA and Commerce Cloud, including a 9.8 CVSS authentication bypass and SSRF risks. Implement patches immediately.

Runtime Rebel Intel
3 min read·May 12, 2026
LMDeploy SSRF: CVE-2026-33626 Exploit and Mitigation Guide
HIGH
Vulnerabilities

LMDeploy SSRF: CVE-2026-33626 Exploit and Mitigation Guide

Attackers are actively exploiting CVE-2026-33626, a high-severity SSRF in LMDeploy, to access sensitive LLM data. Learn how to detect and patch this flaw.

Runtime Rebel Intel
3 min read·Apr 24, 2026
UAT-10608 Exploits Next.js CVE-2024-34351 via React2Shell Script
HIGH
Threat Intel

UAT-10608 Exploits Next.js CVE-2024-34351 via React2Shell Script

Threat actor UAT-10608 is leveraging an automated script to exploit a Next.js SSRF flaw, exfiltrating credentials and environment secrets from web applications.

Runtime Rebel Intel
3 min read·Apr 6, 2026
Mitigating Attack Surface Expansion in Distributed LLM Infrastructure
HIGH
Cloud Security

Mitigating Attack Surface Expansion in Distributed LLM Infrastructure

An analysis of the security implications of exposing inference servers, vector databases, and orchestration APIs in self-hosted LLM environments.

Runtime Rebel Intel
2 min read·Feb 23, 2026