patchconfiguration-management

PAN-OS authentication bypass bug added to list of exploited vulnerabilities

• patchconfiguration-management
• vulnerability-management

PAN-OS authentication bypass bug added to list of exploited vulnerabilities

Steve Zurier June 1, 2026

While NIST upgraded the bug to 9.1, experts say teams must focus more on how attackers can...

Read More Read more about PAN-OS authentication bypass bug added to list of exploited vulnerabilities

CISA adds LiteSpeed cPanel plugin bug to exploited vulnerabilities list

• patchconfiguration-management
• vulnerability-management

CISA adds LiteSpeed cPanel plugin bug to exploited vulnerabilities list

Steve Zurier May 27, 2026

CISA warns of exploited LiteSpeed flaw putting shared hosting at risk.

Read More Read more about CISA adds LiteSpeed cPanel plugin bug to exploited vulnerabilities list

Drupal bug added to CISA list of known exploited vulnerabilities

• patchconfiguration-management
• vulnerability-management

Drupal bug added to CISA list of known exploited vulnerabilities

Steve Zurier May 26, 2026

Drupal SQL injection flaw CVE-2026-9082 added to CISA KEV as active attacks target sites.

Read More Read more about Drupal bug added to CISA list of known exploited vulnerabilities

Cisco patches critical 10.0 flaw in Secure Workload APIs

• patchconfiguration-management
• vulnerability-management

Cisco patches critical 10.0 flaw in Secure Workload APIs

Steve Zurier May 22, 2026

Cisco patches critical 10.0 API flaw in Secure Workload platform.

Read More Read more about Cisco patches critical 10.0 flaw in Secure Workload APIs

Critical bug in F5 NGINX actively exploited

• patchconfiguration-management
• vulnerability-management

Critical bug in F5 NGINX actively exploited

Steve Zurier May 18, 2026

Experts raise concerns because NGINX runs in front of one-third of al website worldwide.

Read More Read more about Critical bug in F5 NGINX actively exploited

Researcher claims Microsoft silently patched Azure Backup for AKS vulnerability

• patchconfiguration-management

Researcher claims Microsoft silently patched Azure Backup for AKS vulnerability

SC Staff May 18, 2026

The vulnerability reportedly discovered by Justin O'Leary allowed users with only the "Backup Contributor" role to gain...

Read More Read more about Researcher claims Microsoft silently patched Azure Backup for AKS vulnerability

10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list

• patchconfiguration-management
• vulnerability-management

10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list

Steve Zurier May 15, 2026

Maximum-severity bug an authentication bypass flaw that’s considered the highest value target in an attacker’s playbook.

Read More Read more about 10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list

New Linux privilege escalation flaw ‘Fragnesia’ disclosed; PoC available

• patchconfiguration-management
• vulnerability-management

New Linux privilege escalation flaw ‘Fragnesia’ disclosed; PoC available

Laura French May 15, 2026

Fragnesia is at least the fourth privilege escalation flaw affecting Linux systems disclosed in the last three...

Read More Read more about New Linux privilege escalation flaw ‘Fragnesia’ disclosed; PoC available

Fleet Device Management launches autonomous endpoint management platform

• patchconfiguration-management

Fleet Device Management launches autonomous endpoint management platform

SC Staff May 14, 2026

Fleet's new platform aims to shorten patch cycles from an industry average of 55 to 94 days...

Read More Read more about Fleet Device Management launches autonomous endpoint management platform

Critical Quest KACE SMA flaw exploited after 10 months

• patchconfiguration-management

Critical Quest KACE SMA flaw exploited after 10 months

SC Staff May 14, 2026

The critical vulnerability CVE-2025-32975 in Quest KACE Systems Management Appliance (SMA) was actively exploited by attackers who...

Read More Read more about Critical Quest KACE SMA flaw exploited after 10 months