DeafNews
// 4 CVE · 3 EXPLOIT · 1 ADVISORY IN THE LAST 24H

Threat Intelligence

A live, filtered feed of the most dangerous and urgent items, grouped by threat type.

// 55 ACTIVE THREATS · 4 IN THE LAST 24H

CRITICAL 5 Critical severity · CVSS ≥ 9.0 or pipeline-flagged
CRITICAL

Acer Wave 7: Critical Zero-Days Exposed, Patch Not Expected Until Late June

DeafSuite team Jun 03, 2026

CRITICAL

Microsoft Patched a Critical SharePoint RCE but Omitted the CVE from Official Documentation

DeafSuite team Jun 01, 2026

CRITICAL

Critical Flowise RCE: Exploit Code Released for CVSS 9.9 Vulnerability

DeafSuite team May 31, 2026

CRITICAL

Chrome 148: Google Patches 151 Vulnerabilities, Including 22 Critical Flaws

DeafSuite team May 29, 2026

CRITICAL

Critical Ghost CMS Flaw Exploited: 700+ Sites Compromised by Competing Threat Actors

DeafSuite team May 28, 2026

ZERO-DAY 9 Actively exploited zero-days
ZERO-DAY

Acer Wave 7: Critical Zero-Days Exposed, Patch Not Expected Until Late June

DeafSuite team Jun 03, 2026

ZERO-DAY

Kemp LoadMaster API Flaw Enables Authenticated RCE: CVSS 8.8 Vulnerability Patched

DeafSuite team Jun 03, 2026

ZERO-DAY

AI Zero-Days and OT Vulnerabilities: ESET’s May 2026 Security Briefing

DeafSuite team Jun 03, 2026

ZERO-DAY

Tuskira Unveils Quell: AI Agent Designed to Mitigate Zero-Days Before Patches Exist

DeafSuite team Jun 02, 2026

ZERO-DAY

Cyber May: AI Attacks Emerge, but Basic Vectors Remain the Primary Threat

DeafSuite team May 30, 2026

ZERO-DAY

AI-Directed Attacks and ICS Vulnerabilities: ESET’s Tony Anscombe on DynoWiper and the First AI Zero-Day

DeafSuite team May 30, 2026

ZERO-DAY

CVE-2026-0257: Active Exploitation Confirmed for GlobalProtect Authentication Bypass

DeafSuite team May 30, 2026

ZERO-DAY

World Cup 2026: A Cyber-Physical Attack Surface Spanning Three Nations

DeafSuite team May 30, 2026

ZERO-DAY

FortiClient EMS: EKZ Infostealer May Target VPN Management Channels

DeafSuite team May 29, 2026

CVE 19 Advisories and patches with an assigned CVE
CVE

CVE-2026-20230: Public PoC for Cisco Unified CM Vulnerability Risks Remote Root Access

DeafSuite team Jun 04, 2026

CVE

Why CVSS Scores Fail the Factory Floor: A New Framework for OT Vulnerability Management

DeafSuite team Jun 04, 2026

CVE

CVE-2026-48095: 7-Zip NTFS Handler Heap Overflow

DeafSuite team Jun 03, 2026

CVE

Microsoft Refuses to Patch Windows Search URI Flaw Enabling NTLM Hash Theft

DeafSuite team Jun 03, 2026

CVE

Kemp LoadMaster API Flaw Enables Authenticated RCE: CVSS 8.8 Vulnerability Patched

DeafSuite team Jun 03, 2026

CVE

CVE-2026-0826: Root RCE Vulnerability Hits HP Poly Enterprise VoIP Phones

DeafSuite team Jun 03, 2026

CVE

Gamaredon APT Weaponizes WinRAR Path Traversal Bug for Ukrainian Espionage

DeafSuite team Jun 02, 2026

CVE

CISA Warns of Active Exploitation for Two-Year-Old Oracle WebLogic Flaw

DeafSuite team Jun 02, 2026

CVE

Gitea Bug Exposed Private Container Images for Four Years

DeafSuite team Jun 02, 2026

CVE

Anthropic Grants ENISA Access to Mythos: A Strategic Shift for EU Cybersecurity

DeafSuite team Jun 02, 2026

CVE

Audit Slams NIST Over NVD Collapse: 27,000 CVE Backlog and $200,000 in Wasted Funds

DeafSuite team Jun 01, 2026

CVE

Microsoft Patched a Critical SharePoint RCE but Omitted the CVE from Official Documentation

DeafSuite team Jun 01, 2026

EXPLOIT 16 PoC and exploits in the wild
EXPLOIT

CVE-2026-20230: Public PoC for Cisco Unified CM Vulnerability Risks Remote Root Access

DeafSuite team Jun 04, 2026

EXPLOIT

CVE-2026-48095: 7-Zip NTFS Handler Heap Overflow

DeafSuite team Jun 03, 2026

EXPLOIT

Kemp LoadMaster API Flaw Enables Authenticated RCE: CVSS 8.8 Vulnerability Patched

DeafSuite team Jun 03, 2026

EXPLOIT

CVE-2026-0826: Root RCE Vulnerability Hits HP Poly Enterprise VoIP Phones

DeafSuite team Jun 03, 2026

EXPLOIT

Gamaredon APT Weaponizes WinRAR Path Traversal Bug for Ukrainian Espionage

DeafSuite team Jun 02, 2026

EXPLOIT

CISA Warns of Active Exploitation for Two-Year-Old Oracle WebLogic Flaw

DeafSuite team Jun 02, 2026

EXPLOIT

Insight Launches Managed Exposure Defense to Combat AI-Driven Exploit Speed

DeafSuite team Jun 01, 2026

EXPLOIT

Microsoft Patched a Critical SharePoint RCE but Omitted the CVE from Official Documentation

DeafSuite team Jun 01, 2026

EXPLOIT

CERT-In Mandates 12-Hour Patching Window to Combat AI-Driven Exploits

DeafSuite team May 31, 2026

EXPLOIT

Critical Flowise RCE: Exploit Code Released for CVSS 9.9 Vulnerability

DeafSuite team May 31, 2026

EXPLOIT

CIFSwitch: Linux Kernel Bug Grants Root Access on CentOS and Rocky Linux

DeafSuite team May 30, 2026

EXPLOIT

CVE-2026-0257: Active Exploitation Confirmed for GlobalProtect Authentication Bypass

DeafSuite team May 30, 2026

ADVISORY 6 CISA, CERT-AgID and vendor advisories
ADVISORY

CISA to Issue Mandatory AI Security Directive for Federal Agencies by Friday

DeafSuite team Jun 04, 2026

ADVISORY

SI-CERT: How a 13-Person Team Manages 6,000 Annual Incidents

DeafSuite team Jun 03, 2026

ADVISORY

CISA Warns of Active Exploitation for Two-Year-Old Oracle WebLogic Flaw

DeafSuite team Jun 02, 2026

ADVISORY

Audit Slams NIST Over NVD Collapse: 27,000 CVE Backlog and $200,000 in Wasted Funds

DeafSuite team Jun 01, 2026

ADVISORY

CERT-In Mandates 12-Hour Patching Window to Combat AI-Driven Exploits

DeafSuite team May 31, 2026

ADVISORY

Cyber Brief: Trump Mobile Breach, FIFA Phishing Surge, and CISA Supply Chain Alerts

DeafSuite team May 29, 2026