Home / Tags / CISA KEV

#CISA KEV

3 Articles tagged

[*] Filtering articles by tag: CISA KEV
[+] Matching entries: 3
root@sekurity:~# ls -la /tags/cisa-kev/* _

[?] Related tags:

#InSEKurity #CVE #Drupal #SQL Injection #PostgreSQL

CVE Research

May 26, 2026

sekurity-team

InSEKurity of the Week (CW21/2026): Drupal Core Anonymous SQL Injection (CVE-2026-9082)

An unauthenticated SQL injection in Drupal core's PostgreSQL EntityQuery handler -- anonymous attackers turn JSON object keys and JSON:API filter parameters into raw SQL fragments. Drupal-rated 23/25 'Highly Critical', CISA KEV, 15,000+ exploit attempts in 48 hours

#InSEKurity #CVE #Drupal +6

Exploit

CVE Research

May 12, 2026

sekurity-team

InSEKurity of the Week (CW19/2026): Palo Alto PAN-OS User-ID Portal Unauthenticated Root RCE (CVE-2026-0300)

A buffer overflow in the PAN-OS User-ID Authentication Portal lets a remote, unauthenticated attacker pop a root shell on PA-Series and VM-Series firewalls -- CVSS 9.3, CISA KEV, actively exploited by a likely state-sponsored cluster (CL-STA-1132)

#InSEKurity #CVE #Palo Alto +7

Exploit

CVE Research

May 5, 2026

sekurity-team

InSEKurity of the Week (CW18/2026): Linux Kernel "Copy Fail" Privilege Escalation (CVE-2026-31431)

A nine-year-old logic bug in the Linux kernel's algif_aead crypto module lets any local user write 4 bytes into the page cache of any readable file -- root, container escape, no race condition, public PoC

#InSEKurity #CVE #Linux +7

Exploit

root@sekurity:~# echo "End of results for tag: CISA KEV"
End of results for tag: CISA KEV
root@sekurity:~# _