All Reports
Every Threat Intel Bi-Weekly issued since launch — full findings, remediation steps, and CVE details.
2026 reports
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-44815 (Windows DHCP Client Service): Critical RCE vulnerability in DHCP Client with CVSS 9.8. Sta... · CVE-2026-26142 (Nuance PowerScribe (Radiology Reporting Platform)): Critical RCE vulnerability in Nuance PowerScribe with CVSS 9... · CVE-2026-0830 (AWS Kiro AI IDE Extension): Command injection vulnerability in AWS Kiro AI-powered IDE e...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-3300 (Everest Forms Pro WordPress Plugin): Actively exploited critical unauthenticated remote code exec... · CVE-2026-7473 (Arista Extensible Operating System): Incomplete comparison with missing factors vulnerability in ... · CVE-2026-11645 (Google Chromium V8 Engine): Out-of-bounds read and write vulnerability in Google Chromiu...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-50751 (Check Point Remote Access VPN): Critical authentication bypass vulnerability affecting Check... · TANSTACK-2026-SUPPLY-CHAIN (TanStack npm packages): Critical supply chain attack on May 11, 2026 compromising 84... · IDESASTER-2026-CAMPAIGN (Multiple AI IDEs): Campaign identifying 30+ vulnerabilities across 10+ AI IDEs ...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-20245 (Cisco Catalyst SD-WAN Manager): Authenticated local command injection in Cisco Catalyst SD-W... · CVE-2026-45247 (Mirasvit Magento Cache Warmer): Deserialization of untrusted data in Mirasvit Full Page Cach... · Miasma-npm-supply-chain-attack (@redhat-cloud-services npm packages): Supply chain attack compromising 32 npm packages under @redh...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-2673 (OpenSSL): Flaw in OpenSSL TLS 1.3 implementation where server may choo... · CVE-2026-21711 (Node.js): Flaw in Node.js Permission Model network enforcement allowin... · LITELLM-SUPPLY-CHAIN-2026 (LiteLLM Python Package): Supply chain attack on LiteLLM versions 1.82.7 and 1.82.8, t...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-48188 (OTRS and ((OTRS)) Community Edition): Critical SQL injection vulnerability (CVSS 9.1) in OTRS data... · CVE-2026-45585 (Windows BitLocker (Windows 11, Server 2022/2025)): BitLocker bypass zero-day dubbed 'YellowKey' with public PoC... · AXIOS-NPM-SUPPLY-CHAIN-2026 (Axios npm package (70M+ weekly downloads)): North Korean state actor Sapphire Sleet compromised Axios np...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-0257 (Palo Alto PAN-OS GlobalProtect): Authentication bypass vulnerability in PAN-OS GlobalProtect ... · CVE-2026-46840 (Oracle REST Data Services Backend-as-a-Service): Easily exploitable vulnerability allows unauthenticated atta... · MSFT-MAY-2026-PATCH (Microsoft Windows and Dynamics 365): Microsoft May 2026 Patch Tuesday addresses 118 CVEs with 16 ...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-8398 (Daemon Tools Lite): Embedded malicious code vulnerability in Daemon Tools Lite w... · CVE-2026-26980 (Ghost CMS): Critical SQL injection vulnerability in Ghost CMS allowing u... · APT28-DNS-HIJACK-2026 (MikroTik and TP-Link routers): Russia-linked APT28 (Forest Blizzard/Storm-2754) DNS hijacki...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-48172 (LiteSpeed cPanel Plugin): Privilege escalation vulnerability in LiteSpeed cPanel Plugi... · CVE-2026-46833 (Oracle Database): Oracle Database vulnerability remotely exploitable without a... · CVE-2026-46834 (Oracle Database): Oracle Database vulnerability remotely exploitable without a...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-9082 (Drupal Core): SQL injection vulnerability in Drupal Core affecting all Pos... · CVE-2025-67644 (LangGraph): SQL injection vulnerability in LangGraph SQLite checkpoint i... · SALT-TYPHOON-2026 (U.S. Telecommunications Infrastructure): Chinese state-sponsored APT Salt Typhoon breached at least 8...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
MSRC-PATCH-TUESDAY-MAY-2026 (Microsoft Windows and Office Products): Microsoft May 2026 Patch Tuesday addresses 120 vulnerabiliti... · CVE-2026-40365 (Microsoft SharePoint Server): Critical vulnerability affecting Microsoft SharePoint Server... · CVE-2026-40361 (Microsoft Word): Critical RCE in Microsoft Word (CVSS 8.4) requiring only ope...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-41096 (Windows DNS Client): Heap-based buffer overflow in Windows DNS Client allowing un... · CVE-2026-42945 (NGINX): "NGINX Rift" heap buffer overflow in ngx_http_rewrite_module... · CVE-2026-43284 (Linux Kernel): "Dirty Frag" vulnerability (part 1 of 2-bug chain) enabling ...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-42897 (Microsoft Exchange Server (Subscription Edition, 2016, 2019)): Zero-day spoofing and XSS vulnerability in Exchange Outlook ... · CVE-2026-0300 (Palo Alto Networks PAN-OS (PA-Series and VM-Series firewalls)): Buffer overflow in User-ID Authentication Portal (Captive Po... · CVE-2026-20182 (Cisco Catalyst SD-WAN Controller and Manager): Authentication bypass vulnerability allowing attackers to ga...
AI Vulnerability Monitor — May 15, 2026
CVE-2026-26129 (Microsoft 365 Copilot Business Chat): Improper neutralization of special elements in Microsoft 365... · CVE-2026-26164 (Microsoft 365 Copilot): Information disclosure vulnerability in Microsoft 365 Copilo... · CVE-2026-33111 (Copilot Chat in Microsoft Edge): Command injection vulnerability (CWE-77) in Copilot Chat emb...
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-0300 PAN-OS zero-day CVSS 9.3 nation-state exploited, no patch until May 13 · CVE-2026-41940 cPanel CVSS 9.8 auth bypass, PoC public · CVE-2026-4670 MOVEit CVSS 9.8 auth bypass · ShinyHunters Canvas breach 275M records · ClaudeBleed Chrome extension hijack, no patch fix.
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-0300 PAN-OS zero-day CVSS 9.3 nation-state exploited, no patch until May 13 · CVE-2026-41940 cPanel CVSS 9.8 auth bypass, PoC public · CVE-2026-4670 MOVEit CVSS 9.8 auth bypass · ShinyHunters Canvas breach 275M records · ClaudeBleed Chrome extension hijack, no patch fix.
Threat Intel Bi-Weekly + AI Vulnerability Monitor
TeamPCP Mini Shai-Hulud SAP/Intercom/Lightning supply chain · Comment and Control cross-agent prompt injection CVSS 9.4 · Copy Fail CVE-2026-31431 CISA KEV · M-Trends 2026 mean time-to-exploit -7 days · Salt Typhoon still active 80+ countries.
Threat Intel Bi-Weekly + AI Vulnerability Monitor
CVE-2026-41940 cPanel CVSS 9.8 pre-auth RCE · CVE-2026-31431 Copy Fail Linux LPE · Bitwarden CLI TeamPCP supply chain · LiteLLM SQL injection exploited · Scattered Lapsus$ ShinySp1d3r RaaS.
Threat Intel Bi-Weekly + AI Vulnerability Monitor
Gemini CLI CVSS 10.0 CI/CD RCE · MCP SDK Design Flaw (7k+ servers) · CVE-2026-33825 BlueHammer Windows Defender LPE · SimpleHelp MSP Chain (DragonForce) · ADT 5.5M Record Breach.
April 2026
Threat Intel Bi-Weekly + AI Vulnerability Monitor
Shai-Hulud npm worm targets AI API keys · CVE-2026-25874 HuggingFace RCE (unpatched) · APT28 3-CVE chain · Bissa Scanner AI-assisted mass exploitation · ASP.NET Core CVSS 9.1.
Threat Intel Bi-Weekly + AI Vulnerability Monitor
MCP protocol design flaw (7,000+ servers) · Windows IKE RCE CVSS 9.8 · 3.2B record credential dump · Windsurf zero-click RCE · Salt Typhoon ongoing · Qilin ransomware SEL attack.
Threat Intel Bi-Weekly — April 24, 2026
Axios npm DPRK RAT (Sapphire Sleet) · TeamCity path traversal CISA KEV · Apache ActiveMQ RCE · Vercel OAuth supply chain breach · GitHub Copilot CVE-2026-23653.