Advisories 1 April 2026

Axios npm Package Backdoored by North Korean Threat Actor (UNC1069)

Scope: JavaScript/Node.js developers, CI/CD pipelines using Axios

Advisories 1 April 2026
Citrix NetScaler ADC/Gateway — Active Exploitation (CVE-2026-3055)

Scope: Citrix NetScaler ADC & Gateway

Severity: Red

Advisories 23 September 2025
SAP S/4HANA code-injection (CVE-2025-42957) now under active exploitation
Advisories 23 September 2025
Microsoft Exchange 2016 & 2019 Reach End of Support in 30 Days

Scope: Microsoft Exchange Server 2016 & 2019 (On-Premises)

Advisories 23 September 2025
WinRAR path traversal zero-day (CVE-2025-8088) exploited to deploy malware
Advisories 12 September 2025
Chrome zero-day (CVE-2025-6554) – sandbox escape/type confusion
Advisories 12 September 2025
Android September 2025 – two actively exploited elevation-of-privilege flaws
Subscribe to Advisories