Friday , July 10 2026

Vulnerabilities

ALERT
Cisco SD-WAN Zero-Day, FortiSandbox and cPanel flaws exploited in attacks

SD-WAN

Cisco on Monday told customers about a new SD-WAN product flaw used in attacks. The flaw, called CVE-2026-20262, is a medium-severity issue that lets files be written anywhere in the Catalyst SD-WAN Manager. “This file could later be used to elevate to root,” Cisco explained, adding, “To exploit this vulnerability, …

Read More »

Critical Wazuh Vuln Enables Alert Tampering and Evidence Deletion

Wazuh

A critical security flaw has affected the open-source security community. Recently, complete details and working exploit code were shared online. This critical Wazuh  flaw lets verified endpoints change central log systems directly. So, any company testing this new platform must take urgent action. If not, they risk major damage to …

Read More »

VMware Fixed Multiple Flaws Allow Attackers to Inject Malicious Scripts

VMware

Broadcom has revealed three stored cross-site scripting (XSS) flaws that affect VMware Cloud Foundation Operations and some other products. They warn that attackers who are logged in could add harmful scripts to do admin tasks in the system. Tracked as CVE-2026-41722, CVE-2026-41723, and CVE-2026-41724, the issues were fixed in the …

Read More »

Cisco SD-WAN Flaw Exploited and Trend Micro Flaws Allows to Security Bypass

flaw

Trend Micro’s Deep Security Agent for Linux has a design flaw. This issue lets a local attacker, who does not have special access, create short “blind spots.” During these moments, endpoint protections are not working temporarily. The issue stems from how the agent unloads and reloads its bmhook and tmhook …

Read More »