rce

MoveIt Redux: Progress Software Battles a New Wave of RCE Flaws

John Z Black Apr 27, 2026

Vulnerabilities & Patching #moveit #progress-software #rce #cve #patching #loadmaster

New critical RCE vulnerabilities in MoveIt WAF and LoadMaster let attackers reach the management shell and bypass security controls entirely. Your patch window is hours, not days.

Management Planes: The Internet's Industrialized Front Door

John Z Black Apr 22, 2026

Vulnerabilities & Patching #management-plane #beyondtrust #palo-alto #cisco #sdwan #zero-day #rce #industrialized-attack

Hackers have stopped chasing individual servers. They are after the tools that manage thousands of them at once. BeyondTrust, Palo Alto, and Cisco are the current bulls-eye.

The CI/CD Supply Chain Crisis: Poisoning the Well at the Source

John Z Black Apr 22, 2026

Vulnerabilities & Patching #cicd #supply-chain #bamboo #gitlab #spinnaker #rce #devsecops

Attackers are ignoring the database and going for the person writing the code. Bamboo, GitLab, and Spinnaker are facing critical flaws that turn your build tools into weapons.

9 Hours 41 Minutes: The Patch Window Is Gone

John Z Black Apr 11, 2026

Vulnerabilities & Patching #cve-2026-39987 #marimo #rce #ai-tooling #patch-management #exploitation-timeline #sysdig

CVE-2026-39987 in Marimo was exploited less than 10 hours after the advisory dropped. No public PoC. The attacker built their own exploit from the description and went to work while most people were still reading their alerts.

An AI Found a 13-Year-Old RCE in ActiveMQ in 10 Minutes

John Z Black Apr 11, 2026

AI Security #activemq #cve-2026-34197 #rce #ai-security-research #claude #jolokia #vulnerability-research #horizon3

CVE-2026-34197 sat undetected in Apache ActiveMQ for 13 years. Claude found it in 10 minutes by tracing a cross-subsystem exploit chain no human auditor had connected.

Three CVEs in Flowise, a Prompt Injection in Grafana, and the Growing Case That Your AI Stack Is the Target

John Z Black Apr 8, 2026

AI Security #ai-security #flowise #grafana #prompt-injection #mcp #rce

Flowise has a perfect 10.0 CVSS under active exploitation. GrafanaGhost injects prompts through metric names. The attack surface isn't the AI model. It's everything around it.

Claude Found RCEs in Vim and Emacs. Only One Got Patched.

John Z Black Apr 2, 2026

AI Security #ai-security #anthropic #vim #emacs #rce #vulnerability-discovery #claude

A researcher used Claude to find file-open RCEs in both Vim and Emacs. Vim patched immediately. Emacs says it's Git's problem. Meanwhile, leaked details of Anthropic's 'Mythos' model suggest AI offensive capabilities are approaching nation-state level.

Three Vendors, Three Critical Bugs, All Exploited This Week: The Edge Device Emergency

John Z Black Mar 31, 2026

Vulnerabilities & Patching #f5 #big-ip #citrix #netscaler #fortinet #forticlient-ems #cisa-kev #rce #cve #patch #perimeter-security

F5 BIG-IP, Citrix NetScaler, and Fortinet FortiClient EMS all have critical vulnerabilities under active exploitation this week. Here's what happened and what you need to do right now.

So Bad That German Police Knocked on Doors: The PTC Windchill Flaw Now in CISA's KEV

John Z Black Mar 28, 2026

Vulnerabilities & Patching #cisa #ptc #windchill #kev #industrial #ics #manufacturing #rce #bsi #critical-infrastructure

A critical RCE flaw in PTC Windchill hit CISA's KEV with no patch available yet, and German police started showing up at factory doors in person to warn companies.

Patch Weekend Is Here: Why Oracle IAM and Cisco FMC Can't Wait

John Z Black Mar 21, 2026

Vulnerabilities & Patching #oracle #cisco #cisa #patching #identity-manager #rce #kev #enterprise-security

Oracle pushed an emergency out-of-band patch for a critical identity manager RCE. CISA set a Sunday deadline on a max-severity Cisco firewall management flaw. Both hit identity and perimeter management simultaneously.

AI Exploits in Hours: The Patch Window Just Collapsed

John Z Black Mar 21, 2026

AI Security #ai-security #langflow #rce #vulnerability-management #incident-response

Rapid exploitation plus cross-platform AI exposure means next-sprint patching is no longer a safe operating model.

Patch Alert: Wing FTP Exploited, Two Patch Tuesday Zero-Days, and a D-Link RCE That Doesn't Need a Login

John Z Black Mar 17, 2026

Vulnerabilities & Patching #vulnerabilities #cisa #kev #wing-ftp #patch-tuesday #dlink #rce #patching

Three vulnerability disclosures in one week across different parts of the stack. Wing FTP is actively exploited, March Patch Tuesday dropped two zero-days, and D-Link has an unauthenticated RCE in its DNS config.

Two Vulnerabilities, Two Patches, One Message: Critical Enterprise Flaws Need Immediate Attention

John Z Black Mar 15, 2026

Vulnerabilities & Patching #patch-management #microsoft #windows-11 #hpe #aruba #enterprise-security #rce #vulnerability

Microsoft shipped an emergency out-of-band RRAS patch days after Patch Tuesday. HPE has a switch vulnerability that lets attackers reset admin passwords with zero credentials. Both need patching now.

Veeam Has Seven Critical RCE Flaws and Ransomware Operators Are Paying Attention

John Z Black Mar 13, 2026

Vulnerability Intelligence #veeam #ransomware #rce #backup #patch #enterprise

Seven simultaneous unauthenticated RCE vulnerabilities in Veeam Backup & Replication. This is a ransomware operator's wishlist, and it all dropped at once. Patch now.