CISA Retires 10
Emergency Cybersecurity Directives
VULNERABILITY
Admin User
Friday, January 9, 2026
VULNERABILITY
n8n Warns of
CVSS 10.0 RCE
VULNERABILITY
Admin User
ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories
The State of Trusted Open Source
CISA Flags Microsoft Office and HPE OneView Bugs as Actively Exploited
Critical n8n Vulnerability (CVSS 10.0) Allows Unauthenticated Attackers to Take Full Control
n8n Warns of CVSS 10.0 RCE Vulnerability Affecting Self-Hosted and Cloud Versions
Veeam Patches Critical RCE Vulnerability with CVSS 9.0 in Backup & Replication
Ongoing Attacks Exploiting Critical RCE Vulnerability in Legacy D-Link DSL Routers
Critical AdonisJS Bodyparser Flaw (CVSS 9.2) Enables Arbitrary File Write on Servers
CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks
Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw
Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability
Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs
ChatGPT Atlas Browser Can Be Tricked by Fake URLs into Executing Hidden Commands
Bridging the Remediation Gap: Introducing Pentera Resolve
Beware the Hidden Costs of Pen Testing
Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild
Top 5 this week
CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024
Cisco Patches ISE Security Vulnerability After Public PoC Exploit Release
Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances
China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes