If a long-running Mac suddenly can't open new TCP connections while existing ones keep working, it's the 49.7-day tcp_now overflow in the XNU kernel. Symptoms, why only a reboot fixes it, and the RFC 7323 workaround Apple never implemented.
Five vulnerabilities confirmed exploited by MuddyWater and DarkSword were added to the KEV catalog. Craft CMS is a CVSS 10.0 zero-day that has seen active exploitation since February, and Laravel Livewire is being used by MuddyWater against Middle East infrastructure.