Summary CVE-2026-50751 is an actively exploited authentication-bypass vulnerability in Check Point remote-access VPN — not a generic perimeter flaw. Disclosed by Check Point on June 8, 2026, it sits in deprecated IKEv1 remote-access code paths and lets an unauthenticated remote attacker establish a VPN connection without a valid user password. The confirmed impact is unauthorized VPN session establishment; … Continue reading “CVE-2026-50751 — Defending Against the Check Point IKEv1 VPN Authentication Bypass”
Microsoft Patch Tuesday, June 2026 Security Update Review
Every Patch Tuesday presents a race between defenders applying fixes and attackers seeking opportunities. Microsoft’s June 2026 release is no exception, delivering security updates for vulnerabilities that could significantly impact enterprise environments if left unaddressed. This month’s release addresses 206 vulnerabilities, including 33 critical and 167 important-severity vulnerabilities. In this month’s updates, Microsoft has addressed three publicly disclosed zero-day vulnerabilities. There were also a massive 360 Microsoft Edge/Chromium vulnerabilities that were fixed by … Continue reading “Microsoft Patch Tuesday, June 2026 Security Update Review”
Google Zero-day Vulnerability Exploited in the Wild (CVE-2026-11645)
Google released security updates to address a large number of vulnerabilities impacting the Chrome browser. Tracked as CVE-2026-11645, this is an out-of-bounds memory access vulnerability in the V8 JavaScript engine. CISA acknowledged the active exploitation of the vulnerability by adding it to its Known Exploited Vulnerabilities Catalog. CISA urges users to patch the vulnerability before June 23, 2026.
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability Exploited in Attack (CVE-2026-20245)
Cisco warned of active exploitation of a vulnerability in Catalyst SD-WAN Manager. Tracked as CVE-2026-20245, the vulnerability could allow an authenticated, local attacker to execute arbitrary commands as root by supplying a crafted file to the affected system. CISA acknowledged the active exploitation of the vulnerability by adding it to its Known Exploited Vulnerabilities Catalog. CISA urges users to patch the vulnerability … Continue reading “Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability Exploited in Attack (CVE-2026-20245)”
Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability (CVE-2026-20230)
Security researchers identified a critical severity vulnerability impacting Cisco Unified Communications Manager. Tracked as CVE-2026-20230, the vulnerability may allow an attacker to conduct server-side request forgery (SSRF) attacks through an affected device.
CISA Warns of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)
CISA has warned about active exploitation of a vulnerability impacting the GlobalProtect portal and gateway of Palo Alto Networks’ PAN-OS software. Tracked as CVE-2026-0257, the vulnerability may allow a remote unauthenticated attacker to successfully establish a VPN connection through the GlobalProtect gateway of an affected appliance. Palo Alto has also mentioned in their advisory that they are aware of limited exploit attempts on unpatched PAN-OS devices without … Continue reading “CISA Warns of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)”
Notepad++ Vulnerabilities Allow Attackers to Execute Arbitrary Code (CVE-2026-48778)
Notepad++ released a security advisory addressing three vulnerabilities, including two arbitrary code execution flaws, that could allow attackers to silently run malicious code on a victim’s machine. The most critical vulnerability among the three is CVE-2026-48778, which can lead to an arbitrary code execution issue via config.xml files.
Drupal Core SQL injection Vulnerability Added to CISA KEV (CVE-2026-9082)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a Drupal Core active exploited vulnerability to its Known Exploited Vulnerabilities catalog. Tracked as CVE-2026-9082, successful exploitation of the vulnerability may allow an attacker to elevate privileges and execute code remotely. CISA urged users to patch the vulnerability before May 27, 2026. Drupal mentioned in the advisory that exploit attempts are now being detected in the wild.
Microsoft Exchange Server Spoofing Vulnerability Exploited in Attack (CVE-2026-42897)
Microsoft has addressed a new security vulnerability impacting on-premises versions of Exchange Server that is being exploited in the wild. Tracked as CVE-2026-42897, the vulnerability may allow an attacker to perform network spoofing.
Cisco Releases Patches for SD-WAN Vulnerability Exploited in the Wild (CVE-2026-20182)
Cisco warned users about a critical vulnerability impacting the Catalyst SD-WAN Controller, tracked as CVE-2026-20182. Successful exploitation of the vulnerability may allow an attacker to bypass authentication and obtain administrative privileges on an affected system. CISA also acknowledged the active exploitation of the CVE-2026-20182 and added it to its Known Exploited Vulnerabilities Catalog. CISA urged users to patch the vulnerability before May 17, 2026.