CVE-2026-50751 — Defending Against the Check Point IKEv1 VPN Authentication Bypass Summary CVE-2026-50751 is an actively exploited authentication-bypass vulnerability in Check Point remote-access VPN — not a generic perimeter flaw. Disclosed by... 11/06/2026 Qualys-Threat-Protect
Microsoft Patch Tuesday, June 2026 Security Update Review Every Patch Tuesday presents a race between defenders applying fixes and attackers seeking opportunities. Microsoft’s June 2026 release is no exception,... 10/06/2026 Qualys-Threat-Protect
Google Zero-day Vulnerability Exploited in the Wild (CVE-2026-11645) Google released security updates to address a large number of vulnerabilities impacting the Chrome browser. Tracked as CVE-2026-11645, this is an out-of-bounds memory access vulnerability in the V8... 10/06/2026 Qualys-Threat-Protect
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability Exploited in Attack (CVE-2026-20245) Cisco warned of active exploitation of a vulnerability in Catalyst SD-WAN Manager. Tracked as CVE-2026-20245, the vulnerability could allow an authenticated, local attacker to execute arbitrary commands... 09/06/2026 Qualys-Threat-Protect
Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability (CVE-2026-20230) Security researchers identified a critical severity vulnerability impacting Cisco Unified Communications Manager. Tracked as CVE-2026-20230, the vulnerability may allow an attacker to conduct server-side request forgery... 05/06/2026 Qualys-Threat-Protect
CISA Warns of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257) CISA has warned about active exploitation of a vulnerability impacting the GlobalProtect portal and gateway of Palo Alto Networks’ PAN-OS software. Tracked as CVE-2026-0257, the vulnerability may allow... 01/06/2026 Qualys-Threat-Protect
Notepad++ Vulnerabilities Allow Attackers to Execute Arbitrary Code (CVE-2026-48778) Notepad++ released a security advisory addressing three vulnerabilities, including two arbitrary code execution flaws, that could allow attackers to silently... 30/05/2026 Qualys-Threat-Protect
Drupal Core SQL injection Vulnerability Added to CISA KEV (CVE-2026-9082) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a Drupal Core active exploited vulnerability to its Known Exploited Vulnerabilities catalog. Tracked as CVE-2026-9082, successful exploitation... 25/05/2026 Qualys-Threat-Protect
Microsoft Exchange Server Spoofing Vulnerability Exploited in Attack (CVE-2026-42897) Microsoft has addressed a new security vulnerability impacting on-premises versions of Exchange Server that is being exploited in the wild.... 18/05/2026 Qualys-Threat-Protect
Cisco Releases Patches for SD-WAN Vulnerability Exploited in the Wild (CVE-2026-20182) Cisco warned users about a critical vulnerability impacting the Catalyst SD-WAN Controller, tracked as CVE-2026-20182. Successful exploitation of the vulnerability may allow an attacker to bypass authentication... 16/05/2026 Qualys-Threat-Protect