#CVE

OpenClaw's SSH sandbox can be escaped through a symlink, CVSS 8.8

A symlink validation bug in OpenClaw's SSH sandbox sync path lets an AI agent read or write arbitrary local files outside the sandbox. GHSA-fv94-qvg8-xqpw, CVSS 8.8.

Chrome 146's Dawn use-after-free is the fourth Chrome zero-day exploited in the wild in 2026

CVE-2026-5281, a UAF in Dawn, the WebGPU implementation used by Chrome, was confirmed in-the-wild. Update to Chrome 146.0.7680.177/178 immediately.

Two cases of unauthenticated RCE and RCE via XSS, over 220,000 instances exposed in OpenCode

CVE-2026-22812 (CVSS 8.8) and CVE-2026-22813 (CVSS 9.4) were disclosed in the open source AI coding agent "OpenCode". Shell commands are executed via XSS of an unauthenticated HTTP server and Markdown renderer. The PoC has been published, with over 220,000 instances exposed online.

Active reconnaissance is underway for Citrix NetScaler ADC's memory-read flaw CVE-2026-3055

Citrix NetScaler ADC / Gateway's CVSS 9.3 out-of-bounds read in SAML IdP configurations is already being scanned by attackers looking for authentication-flow enumeration opportunities.

F5 BIG-IP APM's unauthenticated RCE lands in CISA KEV after Chinese APT source-code theft

F5 BIG-IP APM vulnerability CVE-2025-53521, a CVSS 9.8 unauthenticated RCE, was added to CISA's KEV catalog. It had originally been classified as DoS, but was reclassified after a China-linked APT that compromised F5's network stole source code and vulnerability details. Federal agencies must respond by March 30, 2026.

Three vulnerabilities in LangChain and LangGraph expose files, secrets, and chat history

Three independent vulnerabilities were disclosed in LangChain Core and LangGraph: deserialization that can leak secrets, SQL injection that exposes conversation history, and path traversal that allows arbitrary file reads.

CVSS 10.0 authentication bypass on Quest KACE SMA, actual attack confirmed since early March

A CVSS 10.0 authentication bypass vulnerability CVE-2025-32975 was discovered in Quest KACE SMA, and active attack activity was confirmed starting the week of March 9, 2026. The patch was released in May 2025, but systems that have not been patched are being targeted for attacks.

CISA adds five Craft CMS, Laravel, and Apple WebKit flaws to KEV, with an April 3 patch deadline

Five vulnerabilities confirmed exploited by MuddyWater and DarkSword were added to the KEV catalog. Craft CMS is a CVSS 10.0 zero-day that has seen active exploitation since February, and Laravel Livewire is being used by MuddyWater against Middle East infrastructure.

LangFlow's CVE-2026-33017 was already being exploited within 20 hours of disclosure

A CVSS 9.3 unauthenticated RCE in LangFlow was confirmed in real-world attacks within 20 hours of public disclosure.

GNU Inetutils telnetd CVSS 9.8 pre-authentication remote code execution vulnerability (CVE-2026-32746)

A buffer overflow was discovered in the LINEMODE SLC handler of GNU Inetutils telnetd. No authentication required - root privileges can be gained just by connecting to port 23. All versions (~2.7) are affected and no patch has been released.

Cisco FMC CVSS 10.0 zero-day CVE-2026-20131 was exploited by Interlock ransomware for 36 days

Cisco Secure FMC's unauthenticated RCE flaw CVE-2026-20131 (CVSS 10.0) was added to CISA's KEV catalog after Interlock ransomware had been abusing it for 36 days before Cisco's public disclosure. Amazon Threat Intelligence later dissected the toolkit in detail.

Two Chrome 146 zero-days in Skia and V8 were confirmed exploited in the wild

Google released an emergency update for Chrome 146.0.7680.75 on March 13 to fix two CVSS 8.8 zero-days, both confirmed exploited in the wild. It was Chrome's third emergency patch of 2026.