NEU Siemens
100 CVE-2026-6284
The vulnerability highlights a critical weakness in industrial control system authentication, enabling unauthorized access to manufacturing equipment.
Kritisch
CVSS
9.1
EPSS
0%
Was hat sich geändert?
Vergleich von 18. April 2026 mit dem Vortag 17. April 2026.
Neu hinzugekommen
5 NEU Microsoft
23 Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
Describes an active attack campaign exploiting unpatched vulnerabilities in a core security product the company uses.
Niedrig
NEU Microsoft
23 Microsoft: Some Windows servers enter reboot loops after April patches
Microsoft has issued a specific warning about reboot loops affecting some domain controllers after applying April 2026 patches, indicating a known issue beyond the standard patch advisory.
Niedrig
NEU nginx-ui
0 Jetzt patchen nginx-ui! Angreifer übernehmen Kontrolle über Nginx-Server
Attackers are actively exploiting this vulnerability to take control of Nginx servers, indicating an ongoing campaign beyond just a patch advisory.
Niedrig
NEU Microsoft
0 CVE-2026-21709
Describes a specific method for a local administrator to bypass a core Windows security mechanism, increasing post-exploitation risk.
Niedrig
EPSS
0%
Neu als KEV gelistet
0Keine Änderungen in dieser Kategorie.
Score-Sprung
0Keine Änderungen in dieser Kategorie.
Nicht mehr im Report
8 KEV NEU Palo Alto Networks
100 A Deep Dive Into Attempted Exploitation of CVE-2023-33538
Provides detailed analysis of attempted exploitation techniques and attacker TTPs for a critical firewall vulnerability.
Hoch
CVSS
8.8
EPSS
91%
KEV NEU Apache
100 CISA Adds One Known Exploited Vulnerability to Catalog
Hoch
CVSS
8.8
EPSS
6%
NEU Nginx
100 CVE-2026-33032: Nginx UI Missing MCP Authentication
Describes a missing authentication mechanism in Nginx UI that could allow unauthorized access.
Mittel
CVSS
9.8
EPSS
0%
NEU Nginx
100 Jetzt patchen! Angreifer übernehmen Kontrolle über Nginx-Server
Attackers are actively exploiting this vulnerability to take control of Nginx servers, indicating it's not just a theoretical risk.
Kritisch
NEU Microsoft
100 Recently leaked Windows zero-days now exploited in attacks
The alert confirms these leaked vulnerabilities are now being actively exploited in the wild, moving from theoretical risk to immediate operational threat.
Kritisch
NEU Microsoft
100 New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges
A public proof-of-concept for a zero-day exploit exists, increasing the risk of active exploitation beyond just a patch advisory.
Kritisch
NEU Delta Electronics
60 Delta Electronics ASDA-Soft
Vulnerabilities in ICS software like ASDA-Soft pose a direct risk to operational technology in manufacturing environments.
Hoch
CVSS
3.1
EPSS
0%
NEU Horner Automation
40 Horner Automation Cscape and XL4, XL7 PLC
Highlights the persistent risk of weak authentication in industrial control systems, which could impact similar PLC environments in their manufacturing operations.
Kritisch
CVSS
3.1
EPSS
0%