DeafNews
// 4 CVE · 3 EXPLOIT · 1 ADVISORY IN THE LAST 24H

Cve

Curated coverage and analysis in this editorial area.

34 articles

Date Relevance
CYBERSECCVE

CISA Adds Microsoft Defender DoS Flaw to KEV Catalog with June 3 Deadline

CISA has added CVE-2026-45498, a Denial of Service vulnerability in Microsoft Defender, to its Known Exploited Vulnerabilities catalog…

May 24, 2026views - 42

VULNCVE

CISA Adds Critical Langflow Vulnerability (CVE-2025-34291) to KEV Catalog Following Active Exploitation

CISA has added CVE-2025-34291, a critical origin validation flaw in the Langflow platform, to its Known Exploited Vulnerabilities cata…

May 24, 2026views - 23

CYBERSECCRITICAL

May 2026 Patch Tuesday: 137 Flaws and the Domain Controller Threat

Microsoft's May 2026 security update addresses 137 vulnerabilities, including 31 critical flaws. While no zero-days were reported, una…

May 23, 2026views - 20

CYBERSECCVE

CVE-2026-48172: Critical Root Escalation in LiteSpeed cPanel Plugin Under Active Attack

A critical vulnerability in LiteSpeed’s cPanel plugin allows for privilege escalation to root. We break down the mechanism and provide…

May 23, 2026views - 21

CYBERSECZERO-DAY

TrendAI Fixes Actively Exploited Apex One Zero-Day; CISA Sets June 4 Patch Deadline

TrendAI has issued critical patches for CVE-2026-34926, a directory traversal vulnerability in Apex One on-premises installations curr…

May 22, 2026views - 18

CYBERSECCVE

Drupal Fixes 'Highly Critical' SQL Injection Vulnerability Impacting PostgreSQL

Drupal has released urgent security patches for CVE-2026-9082, an unauthenticated SQL injection flaw. The vulnerability specifically t…

May 21, 2026views - 14

CYBERSECZERO-DAY

Microsoft Defender Zero-Days Under Active Attack; CISA Mandates Patching by June 3

Microsoft has confirmed that two vulnerabilities in Microsoft Defender are being actively exploited in the wild. CISA has added both f…

May 21, 2026views - 58

linuxCVE

CVE-2026-46333: Nine-Year-Old Linux Kernel Flaw Enables Root Escalation

Qualys researchers have disclosed CVE-2026-46333, a Linux kernel vulnerability dormant since 2016 that enables local privilege escalat…

May 21, 2026views - 68

VULNCVE

CVE-2025-68670: Pre-auth RCE Vulnerability Identified in xrdp Server Domain Field

A technical breakdown of CVE-2025-68670: A stack buffer overflow within xrdp's domain name processing logic enables unauthenticated re…

May 21, 2026views - 14

CYBERSECEXPLOIT

Mirai Variant Targets EOL TP-Link Routers via Flawed Exploit for Valid Vulnerability

Unit 42 has identified active exploitation attempts targeting CVE-2023-33538 on end-of-life TP-Link routers. While current in-the-wild…

May 21, 2026views - 13