Vulnerability - CyAsha | Cyber Security Awareness

Critical nginx-ui Flaw CVE-2026-33032 Enables Full Server Takeover

Researcher | 15/04/2026

A newly discovered and actively exploited vulnerability in nginx-ui is raising serious concerns across the cybersecurity community. The flaw, tracked […]

fortinet fortisiem fortigate fortiweb forticlient

Network Security, Vulnerability

FortiClient EMS Vulnerability CVE-2026-35616 Actively Targeted by Hackers

Researcher | 06/04/2026

Fortinet has released urgent security updates to fix a critical vulnerability in FortiClient Endpoint Management Server (EMS) that is already

Vulnerability, Web Security

Citrix Warns of Critical NetScaler Flaw That Could Leak Sensitive Data

Researcher | 24/03/2026

Citrix has issued an urgent security advisory warning organizations to patch a critical vulnerability affecting Citrix NetScaler ADC and Citrix

Threat Intel, Vulnerability

Oracle Warns of Critical CVE-2026-21992 RCE in Identity Manager

Researcher | 22/03/2026

Technology giant Oracle Corporation has released security updates to fix a critical vulnerability that could allow attackers to remotely execute

Vulnerability, Security

CISA Adds Wing FTP Vulnerability to KEV Amid Active Exploitation

Researcher | 17/03/2026

The CISA has issued a new warning about a vulnerability in the widely used Wing FTP Server, adding it to

cloud security, Vulnerability

Veeam Patches Critical Backup Vulnerabilities Enabling Remote Code Execution

Researcher | 13/03/2026

Data backup systems are one of the most important parts of an organization’s cybersecurity strategy. However, if attackers compromise backup

Security, Vulnerability

Critical VMware Aria Operations Vulnerability Exploited: CVE-2026-22719

Researcher | 04/03/2026

The U.S. cybersecurity agency has issued a fresh warning for organizations using VMware products. CISA has officially added a critical

Web Security, Vulnerability

FileZen CVE-2026-25108 Actively Exploited Command Injection Vulnerability

Researcher | 25/02/2026

CISA has officially confirmed that a serious security flaw in FileZen, a popular file transfer product, is being actively exploited by

Web Security, Vulnerability

CVE-2025-40551: SolarWinds Web Help Desk Vulnerability Actively Exploited

Researcher | 04/02/2026

CISA has added a critical SolarWinds Web Help Desk vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, confirming that the

Vulnerability, Web Security

SmarterMail Servers Exposed to Remote Code Execution: CVE-2026-24423

Researcher | 31/01/2026

SmarterTools has released urgent security updates for its SmarterMail email server software, fixing multiple serious vulnerabilities, including a critical unauthenticated