#exploitation

HPE OneView's CVSS 10.0: An Unauthenticated API Endpoint That Runs Commands

CVE-2025-37164 is a maximum-severity RCE in HPE OneView. An unauthenticated REST API endpoint executes arbitrary commands. 40,000+ exploit attempts on day one.

cve rce patch-now +1

Feb 1, 2026 · 6 min read

Read

Vulnerability

HIGH

WinRAR's Six-Month-Old Bug Is a Favorite of Russian APTs, Chinese Espionage, and Brazilian Banking Trojans

CVE-2025-8088 is a path traversal flaw in WinRAR patched last July. Six months later, Sandworm, Turla, Gamaredon, RomCom, and financially motivated groups are still using it.

cve exploitation apt +2

Feb 1, 2026 · 7 min read

Read

Vulnerability

CRITICAL

React2Shell: The CVSS 10.0 That Hit 85,000 Servers

CVE-2025-55182 turned React Server Components into a one-request RCE. Nation-states and criminals moved within hours.

cve rce supply-chain +2

Jan 29, 2026 · 6 min read

Read

Vulnerability

CRITICAL

The Citrix NetScaler Situation Just Got Worse

Mass exploitation of CVE-2024-8534 is ongoing. Notes from helping clients figure out if they're compromised.

citrix netscaler cve +2

Jan 15, 2026 · 5 min read

Read

Vulnerability

CRITICAL

Ivanti Connect Secure Under Mass Exploitation - What We Know So Far

Critical authentication bypass vulnerabilities in Ivanti's VPN appliances are being actively exploited. Here's the timeline, technical details, and what you should do right now.

ivanti vpn cve +2

Jan 22, 2025 · 4 min read

Read