Cyber Security

ELEVATED

CISA Known Exploited Vulnerabilities and regional threat indicators.

Threats (24h)

Critical

Blocked

Threat Level

ELEVATED

CISA Known Exploited Vulnerabilities

CVE ID	Vendor	Product	Date Added	Description
CVE-2026-0257	Palo Alto Networks	PAN-OS	2026-05-29	Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that a
CVE-2026-48027	Nx	Nx Console	2026-05-27	Nx Console contains an embedded malicious code vulnerability that allowed a mali
CVE-2026-45321	TanStack	TanStack	2026-05-27	TanStack contains an unspecified vulnerability that allowed malicious versions o
CVE-2026-8398	Daemon	Daemon Tools Lite	2026-05-27	Daemon Tools contains an unspecified vulnerability that has a high impact on con
CVE-2026-48172	LiteSpeed	cPanel Plugin	2026-05-26	LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is expo
CVE-2026-9082	Drupal	Core	2026-05-22	Drupal Core contains a SQL injection vulnerability that could allow for privileg
CVE-2025-34291	Langflow	Langflow	2026-05-21	Langflow contains an origin validation error vulnerability in which an overly pe
CVE-2026-34926	Trend Micro	Apex One	2026-05-21	Trend Micro Apex One (on-premise) contains a directory traversal vulnerability t
CVE-2008-4250	Microsoft	Windows	2026-05-20	Microsoft Windows contains a buffer overflow vulnerability in the Windows Server
CVE-2009-1537	Microsoft	DirectX	2026-05-20	Microsoft DirectX contains a NULL byte overwrite vulnerability in the QuickTime
CVE-2009-3459	Adobe	Acrobat and Reader	2026-05-20	Adobe Acrobat and Reader contain a heap-based buffer overflow vulnerability whic
CVE-2010-0249	Microsoft	Internet Explorer	2026-05-20	Microsoft Internet Explorer contains an use-after-free vulnerability that could
CVE-2010-0806	Microsoft	Internet Explorer	2026-05-20	Microsoft Internet Explorer contains an use-after-free vulnerability that could
CVE-2026-41091	Microsoft	Defender	2026-05-20	Microsoft Defender contains a link following vulnerability that allows an author
CVE-2026-45498	Microsoft	Defender	2026-05-20	Microsoft Defender contains an unspecified vulnerability that allows for denial

Threat Indicators

Type	Severity	Source	Confidence	Time
Malware C2	critical	AbuseIPDB	100%	6/1/2026, 7:22:49 AM
Ransomware C2	critical	AbuseIPDB	100%	6/1/2026, 2:51:05 AM
Ransomware C2	critical	AbuseIPDB	100%	6/1/2026, 7:12:27 AM
Ransomware C2	critical	AbuseIPDB	100%	6/1/2026, 6:51:07 AM
SSH Brute Force	high	AbuseIPDB	1%	5/24/2026, 4:35:40 PM
Malicious IP	critical	AlienVault OTX	85%

Last updated: 6/1/2026, 1:48:52 PM