Cyber alerts

57 results

June 2026

CC-4791 Medium

Published Thursday 4 June 2026 (02:14) (updated 4 June 2026)

Cisco Releases Security Advisory for Critical Vulnerability in Unified Communications Manager

If exploited, CVE-2026-20230 could allow a remote unauthenticated attacker to elevate privileges to root

CC-4790 Medium

Published Monday 1 June 2026 (01:30) (updated 1 June 2026)

Active Exploitation of Authentication Bypass Vulnerability in Palo Alto Network's PAN-OS GlobalProtect

Successful exploitation of CVE‑2026‑0257 allows unauthenticated attackers to establish unauthorised VPN connections via affected PAN‑OS GlobalProtect deployments.

May 2026

CC-4789 Medium

Published Tuesday 26 May 2026 (01:36) (updated 26 May 2026)

Trend Micro Releases Security Update for Actively Exploited Medium Severity Vulnerability in Apex One

CVE‑2026‑34926 allows code injection via directory traversal in Trend Micro Apex One on‑premise servers.

CC-4788 High

Published Thursday 21 May 2026 (12:36) (updated 26 May 2026)

Active Exploitation of Critical SQL Injection Vulnerability in Drupal Core

CVE-2026-9082 is under active exploitation and could allow for remote code execution

CC-4787 Medium

Published Wednesday 20 May 2026 (03:47) (updated 20 May 2026)

Palo Alto Networks Releases Security Advisory for an Authentication Bypass Vulnerability in PAN‑OS

Successful exploitation of CVE-2026-0265 could allow an unauthenticated attacker with network access to bypass authentication controls when Cloud Authentication Service (CAS) is enabled

CC-4786 Medium

Published Wednesday 20 May 2026 (03:29) (updated 20 May 2026)

Linux Kernel Releases Security Updates for Information Disclosure Vulnerability

Successful exploitation of CVE‑2026‑46333 could allow local attackers to disclose sensitive system files on affected Linux systems

CC-4785 Medium

Published Friday 15 May 2026 (11:56) (updated 15 May 2026)

Microsoft Releases Security Advisory for a Zero-Day Vulnerability in Exchange Server

Successful exploitation of CVE‑2026‑42897 could lead to arbitrary JavaScript execution in the browser context for users of on‑premises Microsoft Exchange Server deployments

CC-4784 High

Published Friday 15 May 2026 (10:50) (updated 15 May 2026)

Exploitation of Zero-Day Vulnerability in Cisco Catalyst SD-WAN

CVE-2026-20182 could allow an unauthenticated attacker to bypass authentication and gain administrative privileges

CC-4783 Medium

Published Thursday 14 May 2026 (03:16) (updated 18 May 2026)

F5 Releases Security Updates for NGINX Vulnerability CVE-2026-42945

NGINX Plus and NGINX Open Source have a vulnerability that could force a restart or allow code execution if exploited

CC-4782 Medium

Published Wednesday 13 May 2026 (01:38) (updated 1 June 2026)

Microsoft Releases May 2026 Security Updates

Scheduled updates for Microsoft products address 137 vulnerabilities