DeafNews
// 4 CVE · 3 EXPLOIT · 1 ADVISORY IN THE LAST 24H

Exploit

Curated coverage and analysis in this editorial area.

17 articles

Date Relevance
VULNCVE

CVE-2026-48095: 7-Zip NTFS Handler Heap Overflow

A heap overflow in 7-Zip’s NTFS handler allows for RCE via crafted files. The vulnerability involves signature-based file routing that…

Jun 03, 2026views - 46

CYBERSECCVE

Gamaredon APT Weaponizes WinRAR Path Traversal Bug for Ukrainian Espionage

The Gamaredon APT group is exploiting CVE-2025-8088, a path traversal vulnerability in WinRAR, to deploy a modular malware suite again…

Jun 02, 2026views - 34

CYBERSECCVE

CISA Warns of Active Exploitation for Two-Year-Old Oracle WebLogic Flaw

CISA has added CVE-2024-21182 to its Known Exploited Vulnerabilities (KEV) catalog, confirming active exploitation of an Oracle WebLog…

Jun 02, 2026views - 51

VULNEXPLOIT

CIFSwitch: Linux Kernel Bug Grants Root Access on CentOS and Rocky Linux

CIFSwitch enables local privilege escalation to root across multiple Linux distributions. While a public PoC is available and an upstr…

May 30, 2026views - 25

VULNCVE

CVE-2026-0257: Active Exploitation Confirmed for GlobalProtect Authentication Bypass

Palo Alto Networks has confirmed active exploitation of CVE-2026-0257 affecting PAN-OS GlobalProtect. CISA has added the vulnerability…

May 30, 2026views - 453

CYBERSECZERO-DAY

World Cup 2026: A Cyber-Physical Attack Surface Spanning Three Nations

Unit 42 maps the sprawling perimeter of the USA-Mexico-Canada World Cup, identifying critical OT/IT interdependencies across 16 host c…

May 30, 2026views - 34

CYBERSECCRITICAL

LLM Agent Conducts Autonomous Post-Exploitation via Marimo RCE

Sysdig documents the first case of an LLM agent completely replacing a human operator in post-exploitation following a critical RCE on…

May 29, 2026views - 18

VULNZERO-DAY

FortiClient EMS: EKZ Infostealer May Target VPN Management Channels

CVE-2026-35616 (CVSS 9.8): Compromised FortiClient EMS platforms could be transformed into malware delivery vehicles. Attacks in May 2…

May 29, 2026views - 13

CYBERSECEXPLOIT

Cisco SD-WAN: Potential Targeted Activity Involving Controllers

A report describes potential exploitation of SD-WAN vulnerabilities, noting activity attributed to a group designated as UAT-8616 and…

May 27, 2026views - 19

CYBERSECCVE

CISA Adds Drupal SQL Injection Vulnerability to KEV Catalog Following Mass Exploitation

CISA has added the CVE-2026-9082 SQL injection flaw in Drupal Core to its Known Exploited Vulnerabilities catalog. The move follows re…

May 26, 2026views - 26

CYBERSECCVE

CVE-2026-41091: Microsoft Defender Engine Exploited for SYSTEM Privilege Escalation

A link-following vulnerability in the Microsoft Malware Protection Engine enables local privilege escalation to SYSTEM. An analysis of…

May 24, 2026views - 189

CYBERSECCVE

CVE-2026-48172: Critical Root Escalation in LiteSpeed cPanel Plugin Under Active Attack

A critical vulnerability in LiteSpeed’s cPanel plugin allows for privilege escalation to root. We break down the mechanism and provide…

May 23, 2026views - 21