24h | 7d | 30d

CVE-2026-21510

Overview

  • Microsoft
  • Windows 10 Version 1607
10 Feb 2026
Published
13 Feb 2026
Updated
CVSS v3.1
HIGH (8.8)
EPSS
5.83%
KEV

Description

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.

Statistics

  • 1 Post
Last activity: 11 hours ago

Bluesky

Profile picture fallback
piggo @pigondrugs.bsky.social
~Sophos~ Microsoft's February update addresses 58 vulnerabilities, including 5 critical and 6 actively exploited in the wild. - IOCs: CVE-2026-21510, CVE-2026-21513, CVE-2026-21514 - #Microsoft #PatchTuesday #ThreatIntel
  • 0
  • 0
  • 0
  • 11h ago

CVE-2026-21513

Overview

  • Microsoft
  • Windows 10 Version 1607
10 Feb 2026
Published
13 Feb 2026
Updated
CVSS v3.1
HIGH (8.8)
EPSS
4.82%
KEV

Description

Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network.

Statistics

  • 1 Post
Last activity: 11 hours ago

Bluesky

Profile picture fallback
piggo @pigondrugs.bsky.social
~Sophos~ Microsoft's February update addresses 58 vulnerabilities, including 5 critical and 6 actively exploited in the wild. - IOCs: CVE-2026-21510, CVE-2026-21513, CVE-2026-21514 - #Microsoft #PatchTuesday #ThreatIntel
  • 0
  • 0
  • 0
  • 11h ago

CVE-2025-11953

Overview

  • @react-native-community/cli-server-api
03 Nov 2025
Published
06 Feb 2026
Updated
CVSS v3.1
CRITICAL (9.8)
EPSS
6.95%
KEV

Description

The Metro Development Server, which is opened by the React Native Community CLI, binds to external interfaces by default. The server exposes an endpoint that is vulnerable to OS command injection. This allows unauthenticated network attackers to send a POST request to the server and run arbitrary executables. On Windows, the attackers can also execute arbitrary shell commands with fully controlled arguments.

Statistics

  • 1 Post
Last activity: 2 hours ago

Bluesky

Profile picture fallback
OpsMatters @opsmatters.com
The latest update for #Indusface includes "CVE-2026-1281 & CVE-2026-1340: Actively Exploited Pre-Authentication RCE in Ivanti EPMM" and "CVE-2025-11953 – Metro4Shell RCE in #ReactNative Metro Server". #cybersecurity #infosec https://opsmtrs.com/3ySs2VF
  • 0
  • 0
  • 0
  • 2h ago

CVE-2026-21514

Overview

  • Microsoft
  • Microsoft 365 Apps for Enterprise
10 Feb 2026
Published
13 Feb 2026
Updated
CVSS v3.1
HIGH (7.8)
EPSS
3.68%
KEV

Description

Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.

Statistics

  • 1 Post
Last activity: 11 hours ago

Bluesky

Profile picture fallback
piggo @pigondrugs.bsky.social
~Sophos~ Microsoft's February update addresses 58 vulnerabilities, including 5 critical and 6 actively exploited in the wild. - IOCs: CVE-2026-21510, CVE-2026-21513, CVE-2026-21514 - #Microsoft #PatchTuesday #ThreatIntel
  • 0
  • 0
  • 0
  • 11h ago
Showing 41 to 44 of 44 CVEs