Linux Fragnesia + PAN-OS + MS Patch Tuesday + NGINX/Exchange/Fortinet/Cisco/Azure vulns
Key Questions
What critical vulnerabilities were highlighted in PAN-OS and Cisco products?
PAN-OS has an active remote code execution flaw. Cisco disclosed multiple CVSS 10.0 issues, including a critical Secure Workload API vulnerability.
What new Linux CVEs were disclosed and what is their impact?
New Linux CVEs include CVE-2026-46333 with a public PoC and DirtyDecrypt for CVE-2026-31635, affecting systems since 2016. These allow privilege escalation for unprivileged users.
What is the severity of the Drupal SQL injection flaw?
CVE-2026-9082 in Drupal carries a CVSS score of 20/25 and permits unauthenticated remote attacks.
Which vulnerabilities were added to CISA's KEV catalog?
CISA added Langflow (CVSS 9.4) and several others, including Trend Micro Apex One, to the Known Exploited Vulnerabilities list due to active attacks.
What does the 2026 Verizon DBIR reveal about exploitation trends?
The DBIR reports that 31% of breaches involved exploitation of vulnerabilities, highlighting the ongoing risk from unpatched software.
What is the revised forecast for vulnerabilities in 2026?
The forecast now projects 68,000 CVEs for 2026, reflecting a 46.3% upward revision due to higher-than-expected discovery rates.
Are there exploits targeting older router flaws like the 2018 Asus vulnerability?
Yes, the RondoDox botnet has begun exploiting an eight-year-old flaw in Asus routers for the first time.
What other major products received critical patches this cycle?
Ubiquiti issued fixes for three CVSS 10.0 UniFi OS flaws, while Chrome received seven code-execution patches and Fortinet, NGINX, and Exchange Server also saw updates.
PAN-OS active RCE; Cisco CVSS 10.0 incl. Secure Workload API flaw; new Linux CVEs with DirtyDecrypt + CVE-2026-46333 PoC; Drupal SQLi CVE-2026-9082 (CVSS 20/25) unauth. CISA KEV adds Langflow (9.4). DBIR 31% exploits. 2026 forecast 68K CVEs.