Threat intelligence dashboard
Today's CVEs, attack reports, and CISA KEV — CVSS, EPSS, and MITRE context at a glance.
Attack reports – last 7 days · through Friday 3 July 2026 (18)
-
Confidence 100 20 MITREs 8 Malwares 11 IOCs 2 Observables 1 APT
-
Confidence 100 16 MITREs 108 IOCs 108 Observables
-
Confidence 100 1 Malware 45 IOCs
Vulnerabilities today (28)
Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 03/07/2026
Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 03/07/2026
Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 03/07/2026
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 03/07/2026
WatchGuard Fireware OS contains a race condition leading to a use-after-free vulnerability in LDAP authentication for the Mobile User VPN with IKEv2. …
- Published
- 03/07/2026
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 03/07/2026
A null pointer dereference vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to create a denial-of-service (DoS) condition by …
- Published
- 03/07/2026
WatchGuard Fireware OS contains a firmware validation bypass when processing a backup image via the backup/restore feature. An authenticated administrator can exploit …
- Published
- 03/07/2026
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated privileged user to execute arbitrary code via a …
- Published
- 03/07/2026
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated privileged user to execute arbitrary code via a …
- Published
- 03/07/2026
A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticated attacker to write arbitrary files on …
- Published
- 03/07/2026
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a specially …
- Published
- 03/07/2026
An Out-of-bounds Write vulnerability in WatchGuard Fireware OS networkd process could allow an authenticated privileged user to execute arbitrary code via a …
- Published
- 03/07/2026
Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly verify the DER encoding of the ASN.1 digest when the IKEv2 AUTH payload was …
- Attack vector
- NETWORK
- Complexity
- HIGH
- Published
- 03/07/2026
Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), did not correctly verify the length of the authentication hash when the SIG payload of an IKEv1 …
- Attack vector
- NETWORK
- Complexity
- HIGH
- Published
- 03/07/2026