CVE-2026-45247

Overview

Mirasvit
Full Page Cache Warmer for Magento 2

26 May 2026

Published

04 Jun 2026

Updated

CVSS v4.0

CRITICAL (9.3)

EPSS

6.15%

MITRE

KEV

Description

Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a PHP object injection vulnerability that allows unauthenticated attackers to achieve remote code execution by supplying a crafted serialized PHP object in the CacheWarmer cookie. Attackers can exploit the unrestricted call to PHP's native unserialize() function combined with gadget chains available in Magento and its dependencies to execute arbitrary code on the server.

Statistics

11 Posts
2 Interactions

Last activity: 2 hours ago

Fediverse

🔒 Security Cyber @securitycyber

CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog

**Critical Alert:** A severe vulnerability (CVE-2026-45247) has been identified and requires immediate attention from security teams worldwide.

## The Details

https://securitycyber.uk

Resources: https://securitycyber.uk | https://www.hackthebox.com

0
0
0
7h ago

Bluesky

softfantw.eurosky.social @softfantw.eurosky.social

CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog thehackernews.com/2026/06/cisa...

0
1
0
8h ago

Cybersecurity News Everyday @hendryadrian.bsky.social

CISA added CVE-2026-45247 to its KEV catalog after active exploitation of a Mirasvit Cache Warmer flaw that can enable unauthenticated RCE in Magento stores via a crafted cookie. #CISA #Magento #Mirasvit

0
1
0
6h ago

boredchilada @boredchilada.bsky.social

~Cisa~ CISA added CVE-2026-45247 (Mirasvit Full Page Cache Warmer Deserialization) to its KEV catalog due to active exploitation. - IOCs: CVE-2026-45247 - #CISA #CVE202645247 #ThreatIntel

0
0
0
20h ago

キタきつね @kitafox.bsky.social

CISAが既知の悪用された脆弱性を1件カタログに追加 CISA Adds One Known Exploited Vulnerability to Catalog #CISA (Jun 3) CVE-2026-45247 Mirasvit フルページキャッシュウォーマーの信頼できないデータの逆シリアル化の脆弱性 www.cisa.gov/news-events/...

0
0
0
14h ago

All About Security @allaboutsecurity.bsky.social

CISA stuft Magento-Lücke CVE-2026-45247 als aktiv ausgenutzt ein - Für Shop-Betreiber, die den Patch noch nicht eingespielt haben, zählt jetzt jede Stunde. www.all-about-security.de/cisa-stuft-m... #cve

0
0
1
8h ago

Information Security Briefly @infosecbriefly.bsky.social

CISA added CVE-2026-45247 to KEV after reports of active exploitation of Mirasvit Cache Warmer, enabling unauthenticated remote code execution via crafted cookie data.

0
0
0
7h ago

Ninja Owl @ninjaowl.ai

CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog #cybersecurity #hacking #news #infosec #security #technology #privacy thehackernews.com/20...

0
0
0
7h ago

Information Security Briefly @infosecbriefly.bsky.social

CISA urged federal agencies to patch CVE-2026-45247 in Mirasvit Full Page Cache Warmer for Magento 2, exploited for unauthenticated remote code execution.

0
0
0
4h ago

Cybersecurity News Everyday @hendryadrian.bsky.social

CISA says CVE-2026-45247 in Mirasvit Full Page Cache Warmer for Magento 2 is being exploited for remote code execution. Versions before 1.11.12 are affected. Watch for suspicious CacheWarmer cookies. #CVE202645247 #Mirasvit #Magento2

0
0
0
2h ago

CVE-2025-48595

Overview

Google
Android

01 Jun 2026

Published

03 Jun 2026

Updated

CVSS

Pending

EPSS

0.40%

MITRE

KEV

Description

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Statistics

7 Posts
8 Interactions

Last activity: 2 hours ago

Fediverse

N_{Dario Fadda} @nuke

CVE-2025-48595: Android 0-Day Actively Exploited — Patch Your Devices Now
#CyberSecurity
https://securebulletin.com/cve-2025-48595-android-0-day-actively-exploited-patch-your-devices-now/

6
1
0
6h ago

𝔸𝕟𝕠𝕟𝕪𝕞𝕠𝕦𝕤 :verified: @youranonnewsirc

Recent reports highlight escalating geopolitical tensions, particularly fresh US and Iranian strikes, prompting the US House to approve a resolution limiting military action. Concurrently, France has restricted Israeli participation at the Eurosatory 2026 defense exhibition.

In technology, Microsoft Build 2026 introduced advanced AI, including the MAI-Thinking-1 model and Copilot Agent Mode. However, GitHub Copilot's new token billing system is causing significant cost increases for users.

On the cybersecurity front, Google has patched an actively exploited high-severity Android flaw (CVE-2025-48595). Additionally, Russian maritime entities have been targeted by hackers, and the FBI warns of the Kali365 Phishing-as-a-Service platform.

#AnonNews_irc #Cybersecurity #News

0
1
0
10h ago

CyberNetsecIO @netsecio

📰 Android Zero-Day Under Attack: Google Issues Urgent Patch for Privilege Escalation Flaw

⚠️ ANDROID ZERO-DAY! Google has patched CVE-2025-48595, a privilege escalation flaw actively exploited in the wild. The fix is in the June 2026 security update, which patches 124 flaws total. Update your Android device NOW! #Android #ZeroDay #CyberSe...

🌐 cyber[.]netsecops[.]io

🔗 https://cyber.netsecops.io/articles/google-patches-actively-exploited-zero-day-flaw-in-android-fram…

0
0
0
20h ago

ThreatNoir @threatnoir

⚠️ CRITICAL: Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited

Google patched 124 Android vulnerabilities in June 2026, including CVE-2025-48595, a high-severity privilege escalation flaw (CVSS 8.4) in the Framework component that is actively exploited in the wild. The vulnerability affects Android 14, 15, 16, and 16 QPR2, allowing code execution through integ…

https://threatnoir.com/focus

#infosec #cybersecurity

0
0
0
3h ago

Bluesky

IT-Connect @it-connect.bsky.social

🛡️ CVE-2025-48595 Les patchs de sécurité de juin 2026 pour Android ont été mis en ligne par Google. 🎯 Au total, ce ne sont pas moins de 124 vulnérabilités corrigées par la firme de Mountain View, dont une faille de sécurité zero-day : www.it-connect.fr/android-le-p... #Android #CVE

0
0
0
2h ago

Cybersecurity News Everyday @hendryadrian.bsky.social

CISA added active exploitation alerts for CVE-2025-48595 in Android Framework and CVE-2022-0492 in Linux kernel. The Android flaw affects Android 14-16; the Linux bug can enable container escape and root access. #Android #Linux #CISA

0
0
0
22h ago

ohhara @shiojiri.com

米CISA、AndroidとLinuxの脆弱性が悪用されていると警告（CVE-2025-48595、CVE-2022-0492） | Codebook｜Security News https://codebook.machinarecord.com/threatreport/silobreaker-cyber-alert/45929/

0
0
0
8h ago

CVE-2026-41089

Overview

Microsoft
Windows Server 2012

12 May 2026

Published

02 Jun 2026

Updated

CVSS v3.1

CRITICAL (9.8)

EPSS

0.10%

MITRE

KEV

Description

Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network.

Statistics

7 Posts
4 Interactions

Last activity: 1 hour ago

Fediverse

cR0w @cR0w

@christopherkunz @wdormann Here's a new one to take a look at. I haven't gone through it and can't vouch for its legitimacy, but y'all know what you're doing more than I do anyway: https://github.com/Vanquishermacdetach/CVE-2026-41089-509

1
0
0
1h ago

:hispagatos: :anarchohacker: @nothing

Atacantes explotan un fallo crítico en Windows Netlogon y ponen en jaque a los controladores de dominio

La vulnerabilidad CVE-2026-41089 permite ejecutar código de forma remota en Windows Netlogon y ya se usa en ataques reales contra controladores de dominio. Microsoft publicó parches el 12 de mayo de 2026 y las empresas deben priorizar la actualización y el endurecimiento del tráfico Netlogon dentro de la red.

https://unaaldia.hispasec.com/atacantes-explotan-un-fallo-critico-en-windows-netlogon-y-ponen-en-jaque-a-los-controladores-de-dominio/

0
1
0
8h ago

Dr. Christopher Kunz @christopherkunz

@wdormann This writeup *seems* to make sense, were it not for the magic two letters in the TLD: https://aretiq.ai/research/vul260513-cve-2026-41089-microsoft-windows-netlogon-buildsamlogonresponse-stack-based-buffer-overflow-rce/

0
1
0
3h ago

Dr. Christopher Kunz @christopherkunz

@wdormann From what I read in the writeup (and the sparse other sources), you need a long enough DNS name on the victim host to trigger the overflow. I think 54 chars or more? This github has a possible explanation why the PoC fails under most normal conditions: https://github.com/ADScanPro/CVE-2026-41089-LongLogon

0
1
0
3h ago

Dr. Christopher Kunz @christopherkunz

@wdormann https://github.com/0xABCD01/CVE-2026-41089/blob/main/poc.py#L234

0
0
0
12h ago

Dr. Christopher Kunz @christopherkunz

@wdormann Of all the writeups, I think I like this one best, especially with it having a human name in the byline: https://adscanpro.com/blog/patch-diffing-cve-2026-41089-netlogon
"read advisories carefully before deciding how to allocate research time." made me chuckle.

0
0
0
1h ago

Bluesky

セキュリティ対策Lab @securitylab-jp.bsky.social

Windows Netlogonの脆弱性がサイバー攻撃に悪用(CVE-2026-41089) rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #security #securitynews

0
0
0
16h ago

CVE-2026-20230

Overview

Cisco
Cisco Unified Communications Manager

03 Jun 2026

Published

04 Jun 2026

Updated

CVSS v3.1

HIGH (8.6)

EPSS

0.02%

MITRE

KEV

Description

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF) attacks through an affected device. This vulnerability is due to improper input validation for specific HTTP requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to write files to the underlying operating system that could be used later to elevate to root. Note: Cisco has assigned this security advisory a Security Impact Rating (SIR) of Critical rather than High as the score indicates. The reason is that exploitation of this vulnerability could result in an attacker elevating privileges to root. Note: To exploit this vulnerability, the WebDialer service must be enabled. WebDialer is disabled by default.

Statistics

5 Posts
4 Interactions

Last activity: 3 hours ago

Fediverse

Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-20230 - SSRF in Cisco Unified CM & Unified CM SME. Improper HTTP input validation. CVSS 8.6. Unpatched. No workaround available. Monitor for updates. #CVE #Cisco #infosec

https://www.valtersit.com/cve/CVE-2026-20230/

1
0
0
17h ago

OffSequence @offseq

⚠️ CRITICAL: Cisco Unified CM/SME hit by SSRF vuln (CVE-2026-20230). Unauthenticated remote attackers can write files & escalate to root if WebDialer is enabled. Patch to 14SU6 ASAP. PoC out, no active exploitation. https://radar.offseq.com/threat/cisco-warns-of-available-poc-for-critical-unified--c947124b #OffSeq #Cisco #SSRF #Vuln

0
1
0
7h ago

Bluesky

Cybersecurity News Everyday @hendryadrian.bsky.social

Cisco patched CVE-2026-20230 in Unified CM and Unified CM SME after PoC code surfaced. The flaw could enable SSRF via crafted HTTP requests and may lead to root access on affected systems. #Cisco #UnifiedCM #CVE202620230

0
1
0
6h ago

Cybersecurity News Everyday @hendryadrian.bsky.social

Cisco fixed CVE-2026-20230, a critical Unified CM flaw that could let remote attackers gain root via SSRF. Systems with WebDialer enabled are affected. Upgrade to 14SU6 or 15SU5. #Cisco #UnifiedCM #WebDialer

0
1
0
3h ago

Information Security Briefly @infosecbriefly.bsky.social

Cisco released patches for CVE-2026-20230 in Unified CM and Unified CM SME, where improper HTTP input validation enables SSRF and potential root escalation.

0
0
0
7h ago

CVE-2026-49975

Overview

Pending

Pending

Published

Pending

Updated

CVSS

Pending

EPSS

Pending

MITRE

KEV

Description

This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available.

Statistics

5 Posts
2 Interactions

Last activity: 1 hour ago

Fediverse

Sam Stepanyan :verified: 🐘 @securestep9

#DDoS: New 'HTTP/2 Bomb' DoS attack crashes major web servers in under a minute. Impacted servers include #NGINX, #Apache HTTP Server, Microsoft #IIS, Envoy, and Cloudflare Pingora. This vulnerability was discovered by Codex AI agent. CVE-2026-49975:
👇
https://www.bleepingcomputer.com/news/security/new-http-2-bomb-dos-attack-crashes-web-servers-in-under-a-minute/

0
1
1
9h ago

:mastodon: decio @decio

💣 HTTP/2 Bomb : une "nouvelle" vulnérabilité DoS permet à un seul client d'épuiser la mémoire d'un serveur web en quelques secondes.

Les chercheurs de Calif et leurs 🤖 Codex ont démontré qu'une combinaison entre l'amplification HPACK et des techniques proches du Slowloris HTTP/2 peut provoquer une consommation mémoire massive.

⚠️ Produits concernés :
• NGINX
• Apache HTTPD
• Microsoft IIS
• Envoy
• Cloudflare Pingora
...

🩹 Rémediation :

✅ NGINX
• Mettre à jour vers 1.29.8+
• Sinon désactiver HTTP/2 temporairement

✅ Apache HTTPD
• Mettre à jour mod_http2 vers 2.0.41+
• Sinon revenir à HTTP/1.1

:debian: https://security-tracker.debian.org/tracker/CVE-2026-49975

:opensuse: https://www.suse.com/security/cve/CVE-2026-49975.html

🛡️ Mitigations complémentaires :
• Limiter la mémoire par processus (cgroups, conteneurs, ulimit)
• Surveiller les pics de consommation mémoire des workers web
• Vérifier que les protections OOM interviennent avant l'utilisation du swap

📖 Analyse :
https://blog.calif.io/p/codex-discovered-a-hidden-http2-bomb

🧪 PoC :
https://github.com/califio/publications/tree/main/MADBugs/http2-bomb

#HTTP2 #DoS #CyberVeille

0
1
0
4h ago

adwr @adwr

#SSI #Apache #NGinx #IIS
Des failles exploitées d'Apache, NGinx et Microsoft IIS (HTTP/2 Bomb CVE-2026-49975) : une petite requête suffit à faire tomber ces serveurs en saturant leur mémoire, en moins d'1 minute.
Prêt ? à vos patchs. Partez !
https://korben.info/http-2-bomb-une-mini-requete-suffit-pour-faire-tomber-nginx-apache-ou-iis.html

0
0
0
1h ago

Bluesky

Skip2 Networks @skip2networks.bsky.social

HTTP/2 Bomb is a remote denial-of-service attack affecting major web servers including nginx, Apache, IIS, Envoy, and Pingora. At this time we do not believe our network is vulnerable. Read more: https://www.skip2.net/blog/security/CVE-2026-49975

0
0
0
10h ago

CVE-2026-8206

Overview

themeum
Kirki – Freeform Page Builder, Website Builder & Customizer

02 Jun 2026

Published

02 Jun 2026

Updated

CVSS v3.1

CRITICAL (9.8)

EPSS

0.12%

MITRE

KEV

Description

The Kirki – Freeform Page Builder, Website Builder & Customizer plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions 6.0.0 to 6.0.6. This is due to the plugin accepting an arbitrary email address when a username is used in the password reset request. This makes it possible for unauthenticated attackers to send a password reset link for any user registered on the site to their own email address.

Statistics

3 Posts
5 Interactions

Last activity: 3 hours ago

Fediverse

N_{Dario Fadda} @nuke

CVE-2026-8206 (CVSS 9.8): Kirki WordPress Plugin Flaw Lets Attackers Steal Admin Accounts on 500,000+ Sites
#CyberSecurity
https://securebulletin.com/cve-2026-8206-cvss-9-8-kirki-wordpress-plugin-flaw-lets-attackers-steal-admin-accounts-on-500000-sites/

5
0
0
7h ago

ThreatNoir @threatnoir

⚠️ CRITICAL: Critical Kirki flaw exploited to hijack WordPress admin accounts

Critical privilege escalation flaw in Kirki WordPress plugin (CVE-2026-8206) allows unauthenticated attackers to reset any user account including admins via an unvalidated REST API endpoint. Wordfence has already blocked 222+ exploitation attempts in 24 hours. Any WordPress site running Kirki versi…

https://threatnoir.com/focus

#infosec #cybersecurity

0
0
0
3h ago

Bluesky

Undercode Testing @undercode.bsky.social

Critical 98 Kirki Plugin Flaw Exploited in the Wild — Over 150K WordPress Sites at Risk of Complete Admin Takeover + Video Introduction: A critical vulnerability designated CVE-2026-8206 with a CVSS score of 9.8 has been discovered in the Kirki – Freeform Page Builder, Website Builder & Customizer…

0
0
0
19h ago

CVE-2026-23479

Overview

redis
redis

05 May 2026

Published

06 May 2026

Updated

CVSS v4.0

HIGH (7.7)

EPSS

0.10%

MITRE

KEV

Description

Redis is an in-memory data structure store. In redis-server from 7.2.0 until 8.6.3, the unblock client flow does not handle an error return from `processCommandAndResetClient` when re-executing a blocked command. If a blocked client is evicted during this flow, an authenticated attacker can trigger a use-after-free that may lead to remote code execution. This has been patched in version 8.6.3.

Statistics

3 Posts
1 Interaction

Last activity: 6 hours ago

Fediverse

buherator @buherator

#Redis - Security advisory: [CVE‑2026‑23479] [CVE‑2026‑25243] [CVE-2026-25588] [CVE‑2026‑25589] [CVE-2026-23631]

https://redis.io/blog/security-advisory-cve202623479-cve202625243-cve-2026-25588-cve202625589-cve-2026-23631/

0
0
0
6h ago

Bluesky

Undercode Testing @undercode.bsky.social

AI-Powered Penetration Testing: Uncovering The 2-Year-Old Redis RCE That Went Undetected (CVE-2026-23479) + Video Introduction: The landscape of cybersecurity is changing rapidly as autonomous AI tools are now capable of hunting for complex vulnerabilities in large codebases. A prime example is…

0
1
0
16h ago

キタきつね @kitafox.bsky.social

自律型AIツールがRedisの2年前のリモートコード実行脆弱性（CVE-2026-23479）を発見 Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) #HackerNews (Jun 3) thehackernews.com/2026/06/auto...

0
0
0
14h ago

CVE-2024-21182

Overview

Oracle Corporation
WebLogic Server

16 Jul 2024

Published

02 Jun 2026

Updated

CVSS v3.1

HIGH (7.5)

EPSS

89.65%

MITRE

KEV

Description

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).

Statistics

2 Posts

Last activity: 2 hours ago

Bluesky

Information Security Briefly @infosecbriefly.bsky.social

CISA added CVE-2024-21182 to the KEV catalog, requiring federal agencies to patch exposed Oracle WebLogic servers by June 4 due to active exploitation.

0
0
0
18h ago

Modat @modat-io.bsky.social

⚠️CVE-2024-21182: Oracle WebLogic Server unauthenticated access via T3/IIOP now actively exploited & added to CISA KEV. Affects 12.2.1.4.0 & 14.1.1.0.0. Patch immediately or block port 7001. Query: web.headers~"WebLogic Server" magnify.modat.io

0
0
0
2h ago

CVE-2026-41283

Overview

OpenStack
Mistral

04 Jun 2026

Published

04 Jun 2026

Updated

CVSS v3.1

CRITICAL (9.9)

EPSS

0.18%

MITRE

KEV

Description

OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.

Statistics

2 Posts

Last activity: 10 hours ago

Fediverse

Hugo | DevOps | Cybersecurity @hugovalters

CVE-2026-41283 - Critical RCE in OpenStack Mistral. API exposure allows code exec & credential exfiltration. CVSS 9.9. No patch yet - restrict API access immediately. #CVE #OpenStack #infosec

https://www.valtersit.com/cve/CVE-2026-41283/

0
0
0
11h ago

OffSequence @offseq

🚨 CRITICAL: CVE-2026-41283 in OpenStack Mistral (v20.0.0 – 22.0.0) allows remote code execution via exposed API. No patch yet. Restrict API to trusted users & monitor closely. Full system compromise possible. https://radar.offseq.com/threat/cve-2026-41283-cwe-863-incorrect-authorization-in--186d9351 #OffSeq #OpenStack #Vuln #CloudSec

0
0
0
10h ago

CVE-2026-9614

Overview

Ivanti
Neurons for ITSM (On-Premises)

01 Jun 2026

Published

02 Jun 2026

Updated

CVSS v3.1

HIGH (8.8)

EPSS

0.36%

MITRE

KEV

Description

An Improper Access Control vulnerability in Ivanti Neurons for ITSM (cloud and on-premises) allows a remote authenticated attacker to gain administrative access.

Statistics

2 Posts

Last activity: 12 hours ago

Bluesky

Undercode Testing @undercode.bsky.social

Ivanti Neurons for ITSM 权限提升漏洞 (CVE-2026-9614): 从低权限用户到 IT 服务台全权控制的“特快通道” Introduction: 广泛的权限检查缺失（CWE-284）使全局广泛部署的 Ivanti Neurons for ITSM 平台陷入了严重的身份验证和授权失效困境。这一被追踪为 CVE-2026-9614 的高危漏洞，允许任何一个已经持有该平台有效普通账号的远程攻击者，绕过所有应有的权限确认环节，一步登顶获取完整的系统管理权限。其 CVSS v3.1 基准分高达 8.8…

0
0
0
19h ago

セキュリティ対策Lab @securitylab-jp.bsky.social

Ivanti Neurons for ITSMに管理者権限取得の脆弱性 CVE-2026-9614 rocket-boys.co.jp/security-mea... #セキュリティ対策Lab #security #securitynews

0
0
0
12h ago