{
  "source": "https://genztech.blog/cve-watchlist/",
  "license": "Free to cite with attribution + link",
  "updated": "2026-07-16",
  "items": [
    {
      "id": "CVE-2026-20230",
      "product": "Cisco Unified Communications Manager",
      "type": "Server-side request forgery (SSRF)",
      "cvss": null,
      "status": "actively exploited",
      "kev": true,
      "action": "Apply Cisco's fixed Unified Communications Manager release immediately, treating it as an incident-response task rather than routine patching. Until patched, restrict network access to the CUCM administrative and web interfaces, segment voice infrastructure away from sensitive internal services, and monitor the server for anomalous outbound requests that would indicate SSRF abuse.",
      "date": "2026-07-16",
      "note": "Cisco confirmed active in-the-wild exploitation of CVE-2026-20230, a server-side request forgery flaw in Unified Communications Manager, the enterprise call-control platform, and CISA added it to the Known Exploited Vulnerabilities catalog. SSRF lets an attacker coax the trusted internal server into making requests on their behalf, turning a mid-severity bug into a pivot toward internal APIs, management interfaces, and metadata endpoints that are not directly exposed. Because CUCM sits deep inside the network, the flaw's real risk exceeds its score.",
      "post": "/p/cisco-ucm-ssrf-cve-2026-20230-exploited/"
    },
    {
      "id": "CVE-2024-42009",
      "product": "Roundcube Webmail",
      "type": "Cross-site scripting (XSS), near-zero interaction",
      "cvss": 9.3,
      "status": "actively exploited",
      "kev": false,
      "action": "Update Roundcube to a fixed release immediately; the patch has existed since 2024 and closes the flaw outright. Put webmail behind SSO with phishing-resistant MFA, enforce a strict content-security policy to blunt XSS, monitor for anomalous or mass mailbox reads, and rotate credentials and session tokens for any account that opened a suspicious message.",
      "date": "2026-07-15",
      "note": "A China-aligned threat cluster is actively exploiting CVE-2024-42009 (CVSS 9.3), a critical Roundcube webmail XSS flaw, against U.S. and Canadian universities. A crafted email runs attacker-controlled JavaScript in the victim's session on view, with almost no interaction, letting intruders read mail and harvest credentials. The fix has been available since 2024; the exposure is unpatched self-hosted Roundcube instances, a reminder that a patched CVE is only closed on the servers that actually applied it.",
      "post": "/p/roundcube-cve-2024-42009-exploited-universities/"
    },
    {
      "id": "CVE-2026-40138 / CVE-2026-40139",
      "product": "BeyondTrust Remote Support & Privileged Remote Access",
      "type": "Pre-authentication (unauthenticated exploitation)",
      "cvss": 9.2,
      "status": "disclosed",
      "kev": false,
      "action": "Patch all affected Remote Support and Privileged Remote Access instances immediately, prioritizing internet-facing appliances, then restrict management access to trusted networks and review logs for anomalous pre-authentication activity during the exposure window. Rotate any secrets the appliance could have exposed if you find signs of compromise.",
      "date": "2026-07-15",
      "note": "BeyondTrust patched two critical pre-authentication vulnerabilities (CVE-2026-40138 and CVE-2026-40139), both CVSS 9.2, in its Remote Support and Privileged Remote Access products. Pre-auth means no credentials are required, and the affected products broker privileged sessions across an environment, making this pair a prime initial-access vector for ransomware and espionage groups. No confirmed in-the-wild exploitation at disclosure, but critical pre-auth bugs in access appliances are weaponized quickly; treat patching as an emergency.",
      "post": "/p/beyondtrust-preauth-cve-2026-40138-40139/"
    },
    {
      "id": "CVE-2026-56155 / CVE-2026-56164",
      "product": "Microsoft ADFS & SharePoint Server",
      "type": "Elevation of privilege (identity federation; unauthenticated network)",
      "cvss": null,
      "status": "actively exploited",
      "kev": false,
      "action": "Patch both before anything else in July's Patch Tuesday. If a SharePoint server cannot be updated at once, apply Microsoft's interim mitigation: enable the Antimalware Scan Interface (AMSI) and set Request Body Scan to Full. Review ADFS and SharePoint logs for anomalous privilege elevation during the exposure window.",
      "date": "2026-07-14",
      "note": "Two of the three zero-days in Microsoft's record 570-flaw July 2026 Patch Tuesday are under active exploitation. CVE-2026-56155 is an elevation-of-privilege flaw in Active Directory Federation Services (Important), credited to Microsoft's DART team (typically found during live-intrusion response); it lets an authorized attacker elevate locally, and ADFS brokers org-wide single sign-on. CVE-2026-56164 is a SharePoint Server elevation-of-privilege bug (Moderate) exploitable over the network by an unauthenticated attacker. A third zero-day, CVE-2026-50661, is a publicly disclosed BitLocker security-feature bypass requiring physical access.",
      "post": "/p/microsoft-570-flaw-patch-tuesday-zero-days/"
    },
    {
      "id": "ShareFile Storage Zone zero-day (CVE pending)",
      "product": "Progress ShareFile Storage Zone Controller",
      "type": "Path traversal (arbitrary file read/write, filesystem enumeration)",
      "cvss": null,
      "status": "actively exploited",
      "kev": false,
      "action": "Apply Progress's new Storage Zone Controller update before bringing any server back online, keep the controller off the public internet, and assume-breach on anything that was exposed: hunt for files written to unexpected directories, unfamiliar accounts, and outbound connections, and rotate every credential the service account could reach. Install February's 5.12.4/v6 updates too if you skipped them.",
      "date": "2026-07-14",
      "note": "Progress confirmed a high-severity path traversal zero-day in all 5.x and 6.x ShareFile Storage Zone Controllers is behind last week's emergency shutdown order, and has shipped a patch. An authenticated admin can read arbitrary files, write attacker content to any directory, and enumerate the filesystem under the service account. Only the hybrid on-premises deployment is affected; cloud-only ShareFile is not. watchTowr honeypots flagged active zero-day exploitation indicators, and internet-exposed controllers dropped from ~30,000 in April to ~1,000 after the shutdown. The CVE number is held ~2 weeks; researchers suspect the Clop group, echoing the MOVEit crisis.",
      "post": "/p/progress-sharefile-zero-day-server-shutdown/"
    },
    {
      "id": "CVE-2026-25089 / CVE-2026-39808 / CVE-2026-39813",
      "product": "Fortinet FortiSandbox",
      "type": "Auth bypass + OS command injection to unauthenticated RCE",
      "cvss": null,
      "status": "actively exploited",
      "kev": false,
      "action": "Apply Fortinet's April and June FortiSandbox updates immediately (all three are patched). Keep FortiSandbox management interfaces off the internet, and assume-breach on any appliance that was exposed and unpatched: review for unexpected accounts, tasks, and outbound connections, and rotate every credential the box could reach.",
      "date": "2026-07-14",
      "note": "Defused honeypots are seeing in-the-wild exploitation attempts against three patched FortiSandbox flaws. CVE-2026-39813 (auth bypass) chains with CVE-2026-39808 (OS command injection) into remote code execution; CVE-2026-25089 reaches unauthenticated command execution on its own. The exploit for CVE-2026-25089 appears AI-authored and did not work correctly when first observed, a preview of machine-generated exploits raising the volume of near-miss attempts. A malware-analysis appliance is a high-value target: it sees the samples, sits deep in the network, and is trusted.",
      "post": "/p/fortisandbox-cves-exploited-ai-generated-poc/"
    },
    {
      "id": "CVE-2026-41106 / CVE-2026-54998",
      "product": "Microsoft 365 Copilot & Exchange Online",
      "type": "Cloud privilege escalation (open redirect; incorrect authorization)",
      "cvss": null,
      "status": "disclosed",
      "kev": false,
      "action": "No customer patch: Microsoft fixed both server-side. Review sign-in and audit logs for anomalous M365 Copilot activity and any unexpected elevated or cross-tenant access during the exposure window, and confirm conditional-access policies are tight.",
      "date": "2026-07-14",
      "note": "Microsoft rated both Critical, an unusually high severity for privilege-escalation flaws, reflecting the blast radius when a multi-tenant privilege boundary breaks. CVE-2026-41106 chains an open redirect in M365 Copilot into privilege escalation; CVE-2026-54998 is an incorrect-authorization flaw in Exchange Online. Both are cloud-side and patched centrally. The Copilot flaw is an early example of the AI-assistant layer itself becoming an attack surface.",
      "post": "/p/m365-copilot-open-redirect-privilege-cve-2026-41106/"
    },
    {
      "id": "Grok Build CLI repo upload",
      "product": "xAI Grok Build CLI (v0.2.93)",
      "type": "Unauthorized codebase and secrets exfiltration to xAI cloud",
      "cvss": null,
      "status": "disclosed",
      "kev": false,
      "action": "Rotate every credential in any repo you opened with Grok Build, and until xAI publishes an advisory scope agent sessions to a temp directory holding only the files a task needs.",
      "date": "2026-07-13",
      "note": "Wire-level capture of Grok Build 0.2.93 showed it uploads the entire tracked Git repository, including unread files and unredacted .env secrets, to a GCS bucket (grok-code-session-traces) regardless of the privacy toggle. xAI mitigated it silently server-side with no published advisory.",
      "post": "/p/grok-build-cli-uploads-entire-repo-xai/"
    },
    {
      "id": "Zimbra Classic XSS",
      "product": "Zimbra Collaboration (Classic Web Client)",
      "type": "Stored cross-site scripting to session compromise / RCE risk",
      "cvss": null,
      "status": "disclosed",
      "kev": false,
      "action": "Apply Zimbra's update across all nodes and confirm the Classic Web Client is on the fixed build. Until patched, restrict external access to the Classic client or force users onto the modern interface. After patching, treat the pre-patch window as potentially compromised: rotate sessions and tokens, review admin accounts, and hunt for anomalous mail-forwarding or filter rules and logins from unfamiliar IPs.",
      "date": "2026-07-13",
      "note": "Zimbra urged customers to patch a critical stored cross-site-scripting flaw in the Classic Web Client where a specially crafted email runs malicious script in the victim's authenticated session when the message is viewed, requiring no click beyond reading mail. Our coverage does not cite an assigned CVE number. Zimbra webmail has a long history of XSS flaws chained into administrative access and remote code execution, and self-hosted mail servers are frequently exploited within days of disclosure, so treat it as drop-everything despite the missing CVE id.",
      "post": "/p/zimbra-classic-web-client-xss-rce-patch/"
    },
    {
      "id": "CVE-2026-20896",
      "product": "Gitea (official Docker images ≤ 1.26.2)",
      "type": "Authentication bypass / account takeover",
      "cvss": 9.8,
      "status": "exploited, patched",
      "kev": false,
      "action": "Upgrade to Gitea 1.26.3 or later immediately; it removes the wildcard trust of the X-WEBAUTH-USER header and makes reverse-proxy auth opt-in. Audit for unexpected admin logins or new tokens, and never expose a self-hosted Git instance to the internet without a hardened proxy.",
      "date": "2026-07-11",
      "note": "The vulnerable Docker image trusted the X-WEBAUTH-USER header from any source IP, so any unauthenticated network client could impersonate any user, including administrators, by setting one header. Sysdig detected the first in-the-wild exploitation attempt 13 days after public disclosure, underscoring how short the patch window is for a maximum-severity flaw in widely deployed self-hosted developer infrastructure.",
      "post": "/p/gitea-docker-cve-2026-20896-auth-header/"
    },
    {
      "id": "CVE-2026-55255",
      "product": "Langflow (AI agent orchestration platform)",
      "type": "Cross-tenant IDOR / authorization bypass via user-controlled flow ID",
      "cvss": 6.1,
      "status": "actively exploited",
      "kev": true,
      "action": "Update to Langflow 1.9.2 or later, then rotate every API key, LLM provider credential and cloud key stored in any flow; audit /api/v1/responses logs for cross-user flow IDs",
      "date": "2026-07-10",
      "note": "First AI agent platform on CISA's KEV. An authenticated request to /api/v1/responses with a victim's flow UUID runs their flow and reads its data, with no ownership check. Sysdig observed in-the-wild exploitation from June 25, chained after the CVE-2026-33017 RCE, to steal LLM provider and AWS keys. CVSS 6.1 understates it: on multi-tenant deployments the IDOR is the only cross-tenant path and it leaves almost no log trace. CISA added it July 7 with a July 10 federal deadline.",
      "post": "/p/langflow-cve-2026-55255-first-ai-agent-kev/"
    },
    {
      "id": "CVE-2026-8037",
      "product": "Progress Kemp LoadMaster",
      "type": "Command injection → RCE",
      "cvss": 9.6,
      "status": "actively exploited",
      "kev": false,
      "action": "Patch now; take management interfaces off the internet",
      "date": "2026-07-06",
      "note": "Attacks on internet-facing load balancers observed from June 29.",
      "post": "/p/kemp-loadmaster-cve-2026-8037-exploited/"
    },
    {
      "id": "CVE-2026-45659",
      "product": "Microsoft SharePoint Server (on-prem)",
      "type": "Unsafe deserialization → RCE",
      "cvss": 8.8,
      "status": "actively exploited",
      "kev": true,
      "action": "Apply the May 2026 patch — every unpatched on-prem server is a target",
      "date": "2026-07-05",
      "note": "Added to CISA's Known Exploited Vulnerabilities catalog July 2 after confirmed exploitation.",
      "post": "/p/sharepoint-cve-2026-45659-actively-exploited/"
    },
    {
      "id": "CVE-2026-35273",
      "product": "Oracle PeopleSoft",
      "type": "Unauthenticated SSRF → RCE",
      "cvss": 9.8,
      "status": "exploited, patched",
      "kev": true,
      "action": "Apply Oracle's June 10 emergency patch; assume compromise if exposed pre-patch",
      "date": "2026-07-04",
      "note": "Exploited as a zero-day by ShinyHunters — 300+ servers at 100+ orgs, exposed SSNs and banking data at Nissan.",
      "post": "/p/oracle-peoplesoft-cve-2026-35273-shinyhunters-breach/"
    },
    {
      "id": "CVE-2026-33825",
      "product": "Microsoft Defender (BlueHammer)",
      "type": "Race condition → SYSTEM privilege escalation",
      "cvss": 7.8,
      "status": "exploited, patched",
      "kev": true,
      "action": "Apply the April 14 Patch Tuesday fix; audit for rollback-engine abuse",
      "date": "2026-07-01",
      "note": "Exploited in the wild by racing Defender's own rollback engine; KEV-listed April 22, later tied to ransomware.",
      "post": "/p/bluehammer-defender-zero-day-cve-2026-33825/"
    }
  ]
}