vulnerability-management - FUSION GLOBAL

Nvidia releases driver updates to fix 14 critical vulnerabilities

SC Staff May 21, 2026

The vulnerabilities affect GeForce, RTX, Quadro, Tesla, and NVS product lines, as well as vGPU and Cloud...

Attackers exploit SonicWall VPN vulnerability to bypass MFA

SC Staff May 21, 2026

The vulnerability, CVE-2024-12802, allows threat actors to bypass MFA on SonicWall Gen6 SSL-VPN appliances by using a...

Critical bug in F5 NGINX actively exploited

Steve Zurier May 18, 2026

Experts raise concerns because NGINX runs in front of one-third of al website worldwide.

10.0 Cisco Catalyst SD-WAN Controller bug added to CISA’s KEV list

Steve Zurier May 15, 2026

Maximum-severity bug an authentication bypass flaw that’s considered the highest value target in an attacker’s playbook.

SC Staff May 15, 2026

The vulnerability, a cross-site scripting flaw with a CVSS score of 8.1, specifically impacts Outlook Web Access...

WordPress Funnel Builder vulnerability exploited to steal payment data

SC Staff May 15, 2026

The vulnerability in the Funnel Builder plugin, used by over 40,000 websites, allows unauthenticated attackers to modify...

Critical vulnerability in Burst Statistics plugin allows admin takeover

SC Staff May 15, 2026

The flaw, identified as CVE-2026-8181, was introduced in version 3.4.0 and persists in 3.4.1 of the Burst...

Laura French May 15, 2026

Fragnesia is at least the fourth privilege escalation flaw affecting Linux systems disclosed in the last three...

SC Staff May 14, 2026

The vulnerability is a time-of-check time-of-use (TOCTOU) flaw affecting operations performed by a SETUID binary.

Two vulnerabilities found in popular WordPress plugin Avada Builder

SC Staff May 14, 2026

The vulnerabilities, disclosed by Wordfence, include an arbitrary file read flaw (CVE-2026-4782) requiring subscriber-level access and a...