Technology ❯ Cybersecurity ❯ Vulnerabilities

Authentication Bypass

Fortinet SonicWall CVE-2024-53704 SonicWall Firewalls Password Management Firmware Exploits CVE-2023-39780 CVE-2025-5777 CVE-2024-54085 OpenClaw Passwordstate Fortinet FortiWeb CVE-2025-64446 CVE-2025-59367 IBM API Connect CVE-2026-24423 CVE-2025-59718 SmarterMail GNU Inetutils Telnetd Fortinet Products CVE-2026-23760 CVE-2025-40552 Remote Code Execution Cisco SD-WAN Progress MOVEit Transfer CVE-2026-20127

Cisco SD‑WAN Zero‑Day Spurs Emergency Directive as Exploitation Traced Back to 2023

Attackers gained administrative access by abusing broken peering checks on exposed controllers, driving urgent hunts for stealthy persistence.

SmarterTools Breach Tied to Warlock After Unpatched SmarterMail Server Exploited

SolarWinds Releases Web Help Desk 2026.1 to Fix Critical RCE and Authentication Bypass Flaws

Fortinet Begins Patching Actively Exploited FortiCloud SSO Bypass as CISA Sets Jan. 30 Deadline

Critical Telnetd Bug in GNU Inetutils Sees Real-World Attacks as Patch Ships

Fortinet Confirms FortiCloud SSO Bypass Hitting Fully Patched FortiGate Firewalls

SmarterMail Admin-Reset Flaw Under Active Exploitation Days After Patch

Fortinet Confirms Second FortiWeb Flaw Under Active Attack as CISA Demands Rapid Fixes

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

ASUS Patches Critical Router Flaw, Urges Immediate Update on Three DSL Models

Passwordstate Releases Urgent Fix for Admin-Bypass Flaw on Emergency Access Page

Dutch National Cyber Security Centre Confirms NetScaler Zero-Day Breaches

AyySSHush Botnet Exploits ASUS Flaw to Backdoor Over 9,000 Routers