LIVE · READERS

Global Network Activity Map

Real-time global network and scanning activity from open, public data sets. Updated periodically.

Sources: abuse.ch · SANS Internet Storm Center

i Real-time network and scanning activity indicators from open, public data sets. Last update: -

PRIORITY · CISA KEV

Priority Anti-Risks (CISA KEV)

Imperfections listed by CISA as a priority in the avoidable catalogue. The federal authorities must eliminate them within a certain timeframe - good practice for others too. Updated periodically.

Source: CISA KEV katalogs

CVE-2026-45659

Microsoft SharePoint Server √ Microsoft SharePoint Server Discussion of Untrusted Data Vulnerability

Deadline: 2026-07-04
CVE-2026-48558

SimpleHelp SimpleHelp √ SimpleHelp Authentication Bypass Vulnerability

Deadline: 2021-07-02
CVE-2026-20230

Cisco Unified Communications Manager √ Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability

Deadline: 2026-06-28
CVE-2026-12569

PTC Windchill and FlexPLM PTC Windchill and FlexPLM Improper Input Validation Vulnerability

Deadline: 2026-06-28
CVE-2026-34909

Ubiquiti UniFi OS Ubiquiti UniFi OS Path Traversal Vulnerability

Deadline: 2026-06-26
CVE-2025-67038

Lantronix EDS5000 √ Lantronix EDS5000 Code Injection Vulnerability

Deadline: 2026-06-26
CVE-2026-34908

Ubiquiti UniFi OS √ Ubiquiti UniFi OS Improper Access Control Vulnerability

Deadline: 2026-06-26
CVE-2026-34910

Ubiquiti UniFi OS Ubiquiti UniFi OS Improper Input Validation Vulnerability

Deadline: 2026-06-26
CVE-2026-20253

Splunk Enterprise Splunk Enterprise Missing Authentication for Critical Function Vulnerability

Deadline: 2026-06-21
CVE-2026-48907

Widget Factory Joomla Content Editor √ Widget Factory Joomla Content Editor Impriper Access Control Vulnerability

Deadline: 2026-06-19
CVE-2026-54420

Lite LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability

Deadline: 2026-06-18
CVE-2026-20262

Cisco Catalyst SD-WAN Manager √ Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability

Deadline: 2026-06-29
CVE-2026-35273 High priority

Oracle PeopleSoft Enterprise PeopleTools Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability

Deadline: 2026-06-15
CVE-2026-10520

Ivanti Sentry Ivanti Sentry OS Command Injection Vulnerability

Target date: 2026-06-14
CVE-2026-7473

Arista Extended Operating System Arista Extended Operating System Incomplete Comparison with Missing Factors Vulnerability

Deadline: 2026-06-23
CVE-2026-20245

Cisco Catalyst SD-WAN Manager √ Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability

Deadline: 2026-06-23
CVE-2026-11645

Google Chromium V8 √ Google Chromium V8 Out-of-Bounds Read and Write Vulnerability

Deadline: 2026-06-23
CVE-2026-50751 High priority

Check Point Security Gateway √ Check Point Security Gateway Improper Authentication Vulnerability

Deadline: 2026-06-11
CVE-2026-42271

Berriai LiteLM √ BerriAI LiteLM Command Injection Vulnerability

Deadline: 2026-06-22
CVE-2026-28318

SolarWinds Serv-U √ SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability

Deadline: 2026-06-19

i CISA KEV - catalogue of priority avoidable vulnerabilities The spoon in the CVE list below indicates overlap with the latest injuries.

REALLY · CVE

Top 20 latest vulnerabilities

Published CVE vulnerabilities from public sources. Updated periodically.

Source: NVD - National Vulnerability Database (NIST)

8.5 CVSS CVE-2026-13325 High

Missing authentication for critical function

A critical function is available without authentication.

CWE-306
CVSS CVE-2025-7958 Waiting for CVSS

Injection of an involuntary code

Unverified data are interpreted as a program code that can change the application's performance.

CWE-94
5.4 CVSS CVE-2026-6658 Medium

Intersite scripting

The web page gets unverified content that can execute a foreign script and steal a session in the user browser.

CWE-79
6.5 CVSS CVE-2026-1869 Medium

Missing authorization

The right of access is not verified which can allow access to foreign resources.

CWE-862
7.5 CVSS CVE-2026-11702 High

High risk vulnerability

It is recommended to update quickly.

CWE-335
7.5 CVSS CVE-2026-11625 High

High risk vulnerability

It is recommended to update quickly.

CWE-335
9.8 CVSS CVE-2026-57881 Critical

Critical vulnerability

High impact - recommended update immediately.

CWE-121
9.8 CVSS CVE-2026-57880 Critical

Critical vulnerability

High impact - recommended update immediately.

CWE-121
9.8 CVSS CVE-2026-57879 Critical

Critical vulnerability

High impact - recommended update immediately.

CWE-121
9.8 CVSS CVE-2026-57878 Critical

Critical vulnerability

High impact - recommended update immediately.

CWE-121
8.6 CVSS CVE-2026-57877 High

High risk vulnerability

It is recommended to update quickly.

CWE-134
7.5 CVSS CVE-2026-57876 High

Cross-border recording in memory

The program writes data outside the dedicated memory area, which may cause a crash or allow you to execute a foreign code.

CWE-787
7.5 CVSS CVE-2026-57875 High

Reference of empty claim

The reference to the non-existent memory indication causes the program crash.

CWE-476
7.5 CVSS CVE-2026-57874 High

Buffer overflow

The data is copied without size check by overwriting the adjacent memory.

CWE-120
7.5 CVSS CVE-2026-57873 High

Reference of empty claim

The reference to the non-existent memory indication causes the program crash.

CWE-476
7.5 CVSS CVE-2026-57872 High

Crossing the road

Insufficient file path check allows access to files outside the allowed folder.

CWE-22
7.5 CVSS CVE-2026-49486 High

High risk vulnerability

It is recommended to update quickly.

CWE-319
8.3 CVSS CVE-2026-2053 High

Forgery of server-side requests (SSRF)

The server is forced to make requests for arbitrary purposes that can reveal internal resources.

CWE-918
6.5 CVSS CVE-2026-8380 Medium

Medium risk vulnerability

Plan an update.

7.7 CVSS CVE-2026-10835 High

High risk vulnerability

It is recommended to update quickly.

i The list is updated periodically from public CVE sources.

REALLY · TECH NEWS

Top 20 technology news

Most popular news from global technology, security and software stories. Updated periodically.

Source: Hacker News

  1. 01
    crustc: parathyroidism of
    ▲ 72 Philpax 💬 10
  2. 02
  3. 03
  4. 04
    Simple, beautiful Emacs model: modusregel
    ▲ 8 jba23 💬 0
  5. 05
    Blast
    ▲ 9 M Carpenter 💬 3
  6. 06
    Virginia bananas sales of geolocation data
    ▲ 330 toomuchtodo 💬 59
  7. 07
  8. 08
    Wireless LAN SD
    ▲ 28 sharpshadow 💬 23
  9. 09
    Great Salt Lake Tracker
    ▲ 54 cfowles 💬 14
  10. 10
    Show HN: Bramble
    ▲ 5 Megagram 💬 0
  11. 11
  12. 12
  13. 13
  14. 14
    The short leash AI
    ▲ 54 Riseed 💬 52
  15. 15
    Claude-real-video - any LLM can catch a video
    ▲ 67 cortexosmain 💬 18
  16. 16
  17. 17
    Clara and the Sun Essay Contest
    ▲ 10 fkozlowski 💬 8
  18. 18
    Exapunks (2018)
    ▲ 208 yu3zhou4 💬 73
  19. 19
  20. 20
    Claude's AskUser
    ▲ 30 tubignasaso 💬 29

i The list is updated periodically from public sources of technology news.