216.73.216.133

Threat intelligence dashboard

Today's CVEs, attack reports, and CISA KEV — CVSS, EPSS, and MITRE context at a glance.

Attack reports – last 7 days · through Friday 3 July 2026 (18)

Vulnerabilities today (28)

Sorted by CVSS severity (highest first)

10.0 Critical

Gardyn devices expose a privileged iothubowner key. Access to this key will allow a malicious user to invoke an IoTHub Registry Manager …

Attack vector
NETWORK
Complexity
LOW
Published
03/07/2026
9.9 Critical

Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.

Attack vector
NETWORK
Complexity
LOW
Published
03/07/2026
9.9 Critical

Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.

Attack vector
NETWORK
Complexity
LOW
Published
03/07/2026
9.3 Critical

Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.

Attack vector
NETWORK
Complexity
LOW
Published
03/07/2026
9.2 Critical

WatchGuard Fireware OS contains a race condition leading to a use-after-free vulnerability in LDAP authentication for the Mobile User VPN with IKEv2. …

Published
03/07/2026
8.8 High

Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.

Attack vector
NETWORK
Complexity
LOW
Published
03/07/2026
8.7 High

A null pointer dereference vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attacker to create a denial-of-service (DoS) condition by …

Published
03/07/2026
8.6 High

WatchGuard Fireware OS contains a firmware validation bypass when processing a backup image via the backup/restore feature. An authenticated administrator can exploit …

Published
03/07/2026
8.6 High

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS wgagent process could allow an authenticated privileged user to execute arbitrary code via a …

Published
03/07/2026
8.6 High

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS ikestubd process could allow an authenticated privileged user to execute arbitrary code via a …

Published
03/07/2026
8.6 High

A path traversal vulnerability in the WatchGuard Fireware OS Management Web UI allows a privileged authenticated attacker to write arbitrary files on …

Published
03/07/2026
8.6 High

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated privileged user to execute arbitrary code via a specially …

Published
03/07/2026
8.6 High

An Out-of-bounds Write vulnerability in WatchGuard Fireware OS networkd process could allow an authenticated privileged user to execute arbitrary code via a …

Published
03/07/2026
8.1 High

Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly verify the DER encoding of the ASN.1 digest when the IKEv2 AUTH payload was …

Attack vector
NETWORK
Complexity
HIGH
Published
03/07/2026
8.1 High

Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), did not correctly verify the length of the authentication hash when the SIG payload of an IKEv1 …

Attack vector
NETWORK
Complexity
HIGH
Published
03/07/2026