Skip to main content
RuntimeRebel

Coverage

Vulnerabilities

738 articles on vulnerability disclosures and exploits

Advertisement

Cisco Catalyst SD-WAN Authentication Bypass: CVE-2026-20182 Exploit
CRITICAL
Vulnerabilities

Cisco Catalyst SD-WAN Authentication Bypass: CVE-2026-20182 Exploit

CISA adds CVE-2026-20182 to its KEV catalog after reports of active exploitation against Cisco Catalyst SD-WAN Controllers. Critical patch required.

Runtime Rebel Intel
3 min read·May 15, 2026
CVE-2026-42897: How Attackers Exploit Microsoft Exchange Server
CRITICAL
Vulnerabilities

CVE-2026-42897: How Attackers Exploit Microsoft Exchange Server

Microsoft warns of active exploitation of CVE-2026-42897, a critical spoofing and XSS vulnerability in on-premise Exchange Server triggered via email.

Runtime Rebel Intel
3 min read·May 15, 2026
VU
CRITICAL
Vulnerabilities

CVE-2024-7109: Burst Statistics WordPress Plugin Auth Bypass Exploited

Hackers are actively exploiting CVE-2024-7109, a critical authentication bypass in Burst Statistics WordPress plugin, to gain admin access. Patch immediately.

Runtime Rebel Intel
4 min read·May 15, 2026
NIST NVD Enrichment Policy Shift: Prioritizing Attacker Behavior
INFO
Vulnerabilities

NIST NVD Enrichment Policy Shift: Prioritizing Attacker Behavior

NIST NVD's recent policy change impacts CVE enrichment, covering only 15-20%. This shift emphasizes prioritizing vulnerabilities based on real attacker behavior.

Runtime Rebel Intel
4 min read·May 14, 2026
VU
HIGH
Vulnerabilities

CVE-2026-40175: Siemens gWAP RCE via Axios Prototype Pollution

Siemens gWAP is vulnerable to RCE via CVE-2026-40175, a prototype pollution flaw in the Axios HTTP client library. Update to v3.1.1 or later.

Runtime Rebel Intel
4 min read·May 14, 2026
VU
CRITICAL
Vulnerabilities

CVE-2026-41551: Siemens ROS# Path Traversal Remediation Guide

Critical path traversal vulnerability (CVE-2026-41551) in Siemens ROS# file_server allows arbitrary file access. Immediate update to v2.2.2+ is crucial.

Runtime Rebel Intel
4 min read·May 14, 2026
VU
HIGH
Vulnerabilities

CVE-2026-46300: Fragnesia Flaw Enables Linux Root Privilege Escalation

Security researchers identify Fragnesia (CVE-2026-46300), a Linux kernel vulnerability allowing local attackers to gain root access via packet fragmentation.

Runtime Rebel Intel
3 min read·May 14, 2026
VU
CRITICAL
Vulnerabilities

Cisco Catalyst SD-WAN Controller Authentication Bypass via CVE-2026-20182 Exploited in Zero-Day Attacks

Cisco warns of a critical authentication bypass in Catalyst SD-WAN Controller (CVE-2026-20182) actively exploited in zero-day attacks, granting admin access.

Runtime Rebel Intel
4 min read·May 14, 2026
CVE-2026-20182: Cisco SD-WAN Auth Bypass Actively Exploited
CRITICAL
Vulnerabilities

CVE-2026-20182: Cisco SD-WAN Auth Bypass Actively Exploited

Cisco Catalyst SD-WAN Controller and Manager face critical authentication bypass CVE-2026-20182, actively exploited for admin access. Patch now.

Runtime Rebel Intel
4 min read·May 14, 2026
VU
HIGH
Vulnerabilities

CVE-2021-23017: NGINX DNS Resolver Buffer Overflow — Patch Now

An 18-year-old stack-based buffer overflow in the NGINX DNS resolver could lead to DoS or RCE. Learn how to secure your web server configuration today.

Runtime Rebel Intel
3 min read·May 14, 2026
TH
INFO
Threat Intel

Anthropic Claude Mythos: Scaling AI-Driven Vulnerability Discovery

Anthropic restricts Claude Mythos Preview access due to its advanced ability to find software vulnerabilities, signaling a shift in automated security research.

Runtime Rebel Intel
3 min read·May 14, 2026
VU
MEDIUM
Vulnerabilities

Dell SupportAssist v4.0.3 Causes Windows BSOD — Remediation Guide

Dell confirms SupportAssist v4.0.3 causes frequent Windows BSOD crashes and system reboots. Learn how to identify and mitigate these stability issues now.

Runtime Rebel Intel
4 min read·May 14, 2026