Cyber Security

ELEVATED

CISA Known Exploited Vulnerabilities and regional threat indicators.

Threats (24h)

Critical

Blocked

Threat Level

ELEVATED

CISA Known Exploited Vulnerabilities

CVE ID	Vendor	Product	Date Added	Description
CVE-2026-35616	Fortinet	FortiClient EMS	2026-04-06	Fortinet FortiClient EMS contains an improper access control vulnerability that
CVE-2026-3502	TrueConf	Client	2026-04-02	TrueConf Client contains a download of code without integrity check vulnerabilit
CVE-2026-5281	Google	Dawn	2026-04-01	Google Dawn contains an use-after-free vulnerability that could allow a remote a
CVE-2026-3055	Citrix	NetScaler	2026-03-30	Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix G
CVE-2025-53521	F5	BIG-IP	2026-03-27	F5 BIG-IP APM contains a stack-based buffer overflow vulnerability that could al
CVE-2026-33634	Aquasecurity	Trivy	2026-03-26	Aquasecurity Trivy contains an embedded malicious code vulnerability that could
CVE-2026-33017	Langflow	Langflow	2026-03-25	Langflow contains a code injection vulnerability that could allow building publi
CVE-2025-32432	Craft CMS	Craft CMS	2026-03-20	Craft CMS contains a code injection vulnerability that allows a remote attacker
CVE-2025-54068	Laravel	Livewire	2026-03-20	Laravel Livewire contain a code injection vulnerability that could allow unauthe
CVE-2025-43510	Apple	Multiple Products	2026-03-20	Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper lockin
CVE-2025-43520	Apple	Multiple Products	2026-03-20	Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer o
CVE-2025-31277	Apple	Multiple Products	2026-03-20	Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer o
CVE-2026-20131	Cisco	Secure Firewall Management Center (FMC)	2026-03-19	Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud
CVE-2025-66376	Synacor	Zimbra Collaboration Suite (ZCS)	2026-03-18	Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnera
CVE-2026-20963	Microsoft	SharePoint	2026-03-18	Microsoft SharePoint contains a deserialization of untrusted data vulnerability

Threat Indicators

Type	Severity	Source	Confidence	Time
Malware C2	critical	AbuseIPDB	7%	3/28/2026, 8:38:47 PM
Ransomware C2	critical	AbuseIPDB	100%	4/8/2026, 3:19:20 AM
Ransomware C2	critical	AbuseIPDB	100%	4/8/2026, 3:06:18 AM
Ransomware C2	critical	AbuseIPDB	100%	4/8/2026, 2:52:48 AM
Ransomware C2	critical	AbuseIPDB	100%	4/8/2026, 3:05:59 AM
Malicious IP	critical	AlienVault OTX	85%

Last updated: 4/11/2026, 11:22:28 AM