Vulnerability - CyAsha | Cyber Security Awareness

fortinet fortisiem fortigate fortiweb forticlient

FortiClient EMS Vulnerability Used to Spread Malware Across Enterprise Networks

Researcher | 28/05/2026

Cybersecurity researchers have warned that threat actors are actively exploiting a critical vulnerability in Fortinet’s FortiClient Endpoint Management Server (EMS) […]

Web Security, Vulnerability

CVE-2026-48172: Severe LiteSpeed cPanel Plugin Flaw Under Active Attack

Researcher | 23/05/2026

A critical security flaw in the LiteSpeed User-End cPanel Plugin is being actively exploited by attackers, raising serious concerns for

Threat Intel, Vulnerability

New Microsoft Defender Vulnerabilities Allow Privilege Escalation Attacks

Researcher | 21/05/2026

Microsoft has warned users about two newly discovered security vulnerabilities in Microsoft Defender that are currently being exploited in real-world

Vulnerability, Threat Intel

DirtyDecrypt PoC Exploit Released for Linux Kernel CVE-2026-31635

Researcher | 19/05/2026

A newly released proof-of-concept (PoC) exploit for the Linux kernel vulnerability CVE-2026-31635, also known as DirtyDecrypt or DirtyCBC, has raised

Artificial Intelligence, Vulnerability

PraisonAI CVE-2026-44338 Exposes AI Agent Workflows

Researcher | 14/05/2026

A newly disclosed security flaw in PraisonAI is already being targeted by threat actors just hours after its public disclosure,

Web Security, Vulnerability

Critical cPanel Flaw CVE-2026-41940 Exploited to Deploy Filemanager Backdoor

Researcher | 12/05/2026

A newly disclosed critical vulnerability in cPanel is already being actively exploited by cybercriminals to compromise servers, steal credentials, and

Web Security, Vulnerability

CVE-2026-23918: Apache HTTP/2 Bug Allows DoS and RCE

Researcher | 06/05/2026

A serious security flaw has been discovered in the widely used Apache HTTP Server, raising concerns across the cybersecurity community.

Vulnerability, Threat Intel

CVE-2026-4670: Critical MOVEit Automation Authentication Bypass Flaw

Researcher | 05/05/2026

Progress Software has released important security updates to fix two serious vulnerabilities in MOVEit Automation, a widely used managed file

Security, Vulnerability

Apache ActiveMQ CVE-2026-34197 Exploited in the Wild

Researcher | 19/04/2026

A newly disclosed high-severity vulnerability in Apache ActiveMQ Classic is now being actively exploited, raising serious concerns for organizations relying

Web Security, Vulnerability

Critical nginx-ui Flaw CVE-2026-33032 Enables Full Server Takeover

Researcher | 15/04/2026

A newly discovered and actively exploited vulnerability in nginx-ui is raising serious concerns across the cybersecurity community. The flaw, tracked

Network Security, Vulnerability

FortiClient EMS Vulnerability CVE-2026-35616 Actively Targeted by Hackers

Researcher | 06/04/2026

Fortinet has released urgent security updates to fix a critical vulnerability in FortiClient Endpoint Management Server (EMS) that is already

Vulnerability, Web Security

Citrix Warns of Critical NetScaler Flaw That Could Leak Sensitive Data

Researcher | 24/03/2026

Citrix has issued an urgent security advisory warning organizations to patch a critical vulnerability affecting Citrix NetScaler ADC and Citrix

Threat Intel, Vulnerability

Oracle Warns of Critical CVE-2026-21992 RCE in Identity Manager

Researcher | 22/03/2026

Technology giant Oracle Corporation has released security updates to fix a critical vulnerability that could allow attackers to remotely execute

Vulnerability, Security

CISA Adds Wing FTP Vulnerability to KEV Amid Active Exploitation

Researcher | 17/03/2026

The CISA has issued a new warning about a vulnerability in the widely used Wing FTP Server, adding it to

cloud security, Vulnerability

Veeam Patches Critical Backup Vulnerabilities Enabling Remote Code Execution

Researcher | 13/03/2026

Data backup systems are one of the most important parts of an organization’s cybersecurity strategy. However, if attackers compromise backup