ScanForge Security Digest 2613-01

March 24, 2026200 items

29 critical88 high10 news

WEEKLY SECURITY DIGEST - EXECUTIVE SUMMARY This week presented a moderate threat landscape with 29 critical vulnerabilities (CVSS 9.0+) and 88 high-severity CVEs, though no actively exploited vulnerabilities were added to CISA's catalog. Notable critical issues include unauthenticated remote code execution vulnerabilities in Cisco Secure Firewall Management Center and file browser applications, as well as privilege escalation flaws in Microsoft 365 Copilot and Centreon monitoring systems. Organizations should prioritize patching these critical vulnerabilities in internet-facing management interfaces and update knowledge management systems like SiYuan to versions 3.6.1 or later. Security teams should also monitor the ongoing data breach trends affecting both private sector entities and government organizations, as demonstrated by recent incidents involving QualDerm and Dutch government agencies. Recommended actions include conducting an inventory of affected systems, applying patches where available, and strengthening authentication controls for remote administrative interfaces.

Critical

10.0 File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing CVE-2026-32760

10.0 A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM CVE-2026-20131

9.9 SiYuan 3 CVEs

CVE-2026-32938, CVE-2026-32767, CVE-2026-32940

9.9 Server-side request forgery (ssrf) in Microsoft 365 Copilot's Business Chat allows an authorized att CVE-2026-26137

9.9 Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket mod CVE-2026-2749

9.8 Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST We CVE-2026-21992

9.8 An issue in DedeCMS v.5.7.118 and before allows a remote attacker to execute arbitrary code via the CVE-2026-30694

9.8 Use of a deterministic credential generation algorithm in /ftl/bin/calc_f2 in Small Cell Sercomm SCE CVE-2025-67114

9.8 OS command injection in the CWMP client (/ftl/bin/cwmp) of Small Cell Sercomm SCE4255W (FreedomFi En CVE-2025-67113

9.8 Use of a hard-coded AES-256-CBC key in the configuration backup/restore implementation of Small Cell CVE-2025-67112

9.8 ncurses v6.5 and v6.4 are vulnerable to Buffer Overflow in progs/infocmp.c, function analyze_string( CVE-2025-69720

9.8 A command injection vulnerability exists in the web management interface of the WiFi Extender WDR201 CVE-2026-30703

High Severity

8.8 SuiteCRM 4 CVEs CVE-2026-33289, CVE-2026-33288, CVE-2026-29109, CVE-2026-29189

8.8 Admidio 2 CVEs CVE-2026-32756, CVE-2026-32813

8.8 Devome GRR v4.5.0 was discovered to contain multiple authenticated SQL injection CVE-2026-30711

8.8 LDAP Account Manager (LAM) is a webfrontend for managing entries (e.g. users, gr CVE-2026-27894

8.8 Netartmedia PHP Mall 4.1 2 CVEs CVE-2019-25541, CVE-2019-25540

8.8 XooGallery Latest 4 CVEs CVE-2019-25524, CVE-2019-25523, CVE-2019-25522, CVE-2019-25521

8.8 A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet CVE-2023-5178

8.7 Nest is a framework for building scalable Node.js server-side applications. In v CVE-2026-33011

8.7 SQLBot 3 CVEs CVE-2026-32949, CVE-2026-32950, CVE-2026-32622

8.7 OpenClaw versions prior to 2026.2.25 2 CVEs CVE-2026-32013, CVE-2026-32025

+51 more products affected

Security News

Webinar Today: Putting CIS Controls and Benchmarks into Practice SecurityWeek

Learn how the CIS Critical Security Controls and the CIS Benchmarks can be used together to support secure configuration

Microsoft Proposes Better Identity, Guardrails for AI Agents Dark Reading

Companies need better controls to manage key threats rising from the growth of agentic AI. These new features provide a

3.1 Million Impacted by QualDerm Data Breach SecurityWeek

Hackers stole personal, medical, and health insurance information from the company’s internal systems. The post 3.1 Mill

Iran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting Tool SecurityWeek

The role of Israel’s hijacking of Iran’s street cameras in the killing of the country’s supreme leader underscores how s

Dutch Ministry of Finance discloses breach affecting employees Bleeping Computer

The Dutch Ministry of Finance confirmed on Monday that some of its systems were breached in a cyberattack detected last

Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials The Hacker News

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency w

5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents The Hacker News

On February 25, 2026, Gartner published its inaugural Market Guide for Guardian Agents, marking an important milestone f

Critical Citrix NetScaler Vulnerability Poised for Exploitation, Security Firms Warn SecurityWeek

An out-of-bounds read vulnerability can be exploited remotely without authentication to read sensitive information from