ScanForge Security Digest 2629-01

200 items
30 critical51 high10 news

This week's security digest includes 0 actively exploited vulnerabilities (CISA KEV), 30 critical CVEs, and 51 high-severity CVEs. Review the details below and prioritize patching for any affected systems.

Critical

30

High Severity

51
8.8 The Joomla extension Helix Ultimate 2 CVEs CVE-2026-57830, CVE-2026-57829
8.8 Crawl4AI 2 CVEs CVE-2026-56260, CVE-2026-56259
8.8 OpenEXR provides the specification and reference implementat 2 CVEs CVE-2026-42216, CVE-2026-41142

+35 more products affected

Security News

10
Records Are Made to Be Broken: Patch Tuesday Raises Triage Stakes Dark Reading

Three of the 622 CVEs for which Microsoft issued patches this week are zero-days; there are more than 60 critical vulner

SonicWall warns of SMA1000 flaws exploited in zero-day attacks, patch now Bleeping Computer

SonicWall warns that threat actors have been exploiting two SMA1000 vulnerabilities, tracked as CVE-2026-15409 and CVE-2

Microsoft Patches Record 622 Flaws, Including Two Zero-Days Under Active Attack The Hacker News

Microsoft shipped its largest Patch Tuesday on record today, and two of the fixes close holes that attackers are already

Spanish Police take down €140 million cyber fraud ring, arrest four Bleeping Computer

The Spanish Police dismantled a cybercrime and money-laundering organization that made €140 million ($160 million) from

6 GHz Wi-Fi Flaws Could Disrupt Critical Systems Dark Reading

Automated Frequency Coordination systems by default trust client-side data, which could lead to location spoofing and ot

Microsoft Patches a Record 570 Security Flaws Krebs on Security

Microsoft Corp. today released software updates to plug at least 570 security holes in its Windows operating systems and

Nearly 300 GitHub repos pose as legit software to push malware Bleeping Computer

A threat actor has published hundreds of fake GitHub repositories impersonating legitimate software and security project

Microsoft Patches Record 622 Vulnerabilities, Including Two Exploited Zero-Days SecurityWeek

Two flaws in Active Directory and SharePoint Server have been exploited as zero-days, and a BitLocker bug was publicly d

Content aggregated from NIST/NVD, CISA, CERT/CC, and public security news sources. External articles are linked to their original source.