Skip to content
Security Alerts

Security Alerts

We monitor threats 24/7. We publish alerts about critical vulnerabilities based on CISA KEV and NVD.

10
Critical
10
High
21
CISA KEV
21
Total

Critical (CVSS 9.0+)

Critical CISA KEV
9.8 CVSS

CVE-2024-43468

CVE-2024-43468: 2024 Vulnerability Now Actively Exploited (Microsoft)

Microsoft • Configuration Manager
Critical CISA KEV Ransomware
9.8 CVSS

CVE-2026-24423

CVE-2026-24423: SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability

SmarterTools • SmarterMail
Critical CISA KEV
9.8 CVSS

CVE-2025-11953

CVE-2025-11953: React Native Community CLI OS Command Injection Vulnerability

React Native Community • CLI
Critical CISA KEV
9.8 CVSS

CVE-2019-19006

CVE-2019-19006: 2019 Vulnerability Now Actively Exploited (Sangoma)

Sangoma • FreePBX
Critical CISA KEV
9.8 CVSS

CVE-2025-40551

CVE-2025-40551: SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability

SolarWinds • Web Help Desk
Critical CISA KEV
9.8 CVSS

CVE-2026-1281

CVE-2026-1281: Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability

Ivanti • Endpoint Manager Mobile (EPMM)
Critical CISA KEV
9.8 CVSS

CVE-2026-24858

CVE-2026-24858: Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability

Fortinet • Multiple Products
Critical CISA KEV
10.0 CVSS

CVE-2025-52691

CVE-2025-52691: SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability

SmarterTools • SmarterMail
Critical CISA KEV
9.8 CVSS

CVE-2026-23760

CVE-2026-23760: SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability

SmarterTools • SmarterMail
Critical CISA KEV
9.8 CVSS

CVE-2026-24061

CVE-2026-24061: GNU InetUtils Argument Injection Vulnerability

GNU • InetUtils

High (CVSS 7.0-8.9)

High CISA KEV
7.8 CVSS

CVE-2026-20700

CVE-2026-20700: Apple Multiple Buffer Overflow Vulnerability

Apple • Multiple Products
High CISA KEV
8.1 CVSS

CVE-2025-40536

CVE-2025-40536: SolarWinds Web Help Desk Security Control Bypass Vulnerability

SolarWinds • Web Help Desk
High CISA KEV
8.8 CVSS

CVE-2026-21510

CVE-2026-21510: Microsoft Windows Shell Protection Mechanism Failure Vulnerability

Microsoft • Windows
High CISA KEV
8.8 CVSS

CVE-2026-21513

CVE-2026-21513: Microsoft Internet Explorer Protection Mechanism Failure Vulnerability

Microsoft • Windows
High CISA KEV
7.8 CVSS

CVE-2026-21514

CVE-2026-21514: Microsoft Office Word Reliance on Untrusted Inputs in a Security Decision Vulnerability

Microsoft • Office
High CISA KEV
7.8 CVSS

CVE-2026-21533

CVE-2026-21533: Microsoft Windows Improper Privilege Management Vulnerability

Microsoft • Windows
High CISA KEV
7.8 CVSS

CVE-2026-21519

CVE-2026-21519: Microsoft Windows Type Confusion Vulnerability

Microsoft • Windows
High CISA KEV
7.2 CVSS

CVE-2025-64328

CVE-2025-64328: Sangoma FreePBX OS Command Injection Vulnerability

Sangoma • FreePBX
High CISA KEV
7.8 CVSS

CVE-2018-14634

CVE-2018-14634: 2018 Vulnerability Now Actively Exploited (Linux)

Linux • Kernal
High CISA KEV
7.8 CVSS

CVE-2026-21509

CVE-2026-21509: Microsoft Office Security Feature Bypass Vulnerability

Microsoft • Office

Other

High CISA KEV
5.0 CVSS

CVE-2025-15556

CVE-2025-15556: Notepad++ Download of Code Without Integrity Check Vulnerability

Notepad++ • Notepad++

Data Sources

We publish alerts based on official government sources:

CISA KEV Catalog NVD (NIST) CVE.org (MITRE)

Want to Reduce IT Risk and Costs?

Book a free consultation - we respond within 24h

Response in 24h Free quote No obligations
Book a Call +48 22 487 86 36

Or download free guide:

Download NIS2 Checklist