CRITICAL

CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry

Rapid7 Research • Jun 10, 2026

HIGH

More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520)

WatchTowr Labs • Jun 10, 2026

MEDIUM

Second-Order OS Command Injection via JSON Input on start vnc feature

Fortinet PSIRT • Jun 09, 2026

HIGH

CVE-2026-34714

Microsoft Security Response Center • Apr 08, 2026

CRITICAL

OS Command Injection through API endpoint

Fortinet PSIRT • Apr 14, 2026

MEDIUM

OS command injection on vmimages update feature

Fortinet PSIRT • Mar 10, 2026

MEDIUM

OS Command injection in FortiWeb API

Fortinet PSIRT • Mar 10, 2026

CRITICAL

Johnson Controls, Inc. Frick Controls Quantum HD

CISA ICS Advisories • Feb 26, 2026

CRITICAL

CISA Confirms Active Exploitation of FileZen CVE-2026-25108 Vulnerability

The Hacker News • Feb 25, 2026

CRITICAL

CISA Adds One Known Exploited Vulnerability to Catalog

CISA All Advisories • Feb 24, 2026