#CVE

CVE-2026-40175: axios acted as a prototype pollution gadget, enabling CRLF header injection

CVE-2026-40175: unrelated to the March supply-chain compromise. axios's config merge picked up tainted Object.prototype values and passed them through as HTTP headers without CRLF validation, chaining to SSRF. Fixed in 1.15.0.

Marimo's CVSS 9.3 Pre-Auth RCE and Astral's uv Supply Chain Defense Playbook

A CVSS 9.3 unauthenticated RCE in the Marimo Python notebook was exploited within hours of advisory disclosure. Meanwhile, Astral published its comprehensive supply chain security posture for uv and ruff, covering CI/CD pipeline hardening, Trusted Publishing, and Sigstore attestation.

Russia's GRU APT28 Hijacked TP-Link Routers to Steal Microsoft 365 Credentials

The full picture of Operation Masquerade as disclosed by the FBI and NCSC. APT28 tampered with SOHO router DNS to intercept Outlook auth tokens — the techniques and countermeasures.

Docker Engine AuthZ Plugin Bypass: Incomplete Fix for CVE-2024-41110 Exploitable Again (CVE-2026-34040)

The fix for CVE-2024-41110 missed the upper bound — request bodies over 1MB bypass AuthZ plugins. All Docker Engine versions before 29.3.1 are affected.

CVSS 10.0 RCE in Flowise CustomMCP Node Exposes 12,000+ Instances

CVE-2025-59528: A Function() constructor-based arbitrary code execution vulnerability in Flowise's CustomMCP node is being actively exploited. Over 12,000 instances remain exposed on the internet.

OpenClaw's SSH sandbox can be escaped through a symlink, CVSS 8.8

A symlink validation bug in OpenClaw's SSH sandbox sync path lets an AI agent read or write arbitrary local files outside the sandbox. GHSA-fv94-qvg8-xqpw, CVSS 8.8.

Chrome 146's Dawn use-after-free is the fourth Chrome zero-day exploited in the wild in 2026

CVE-2026-5281, a UAF in Dawn, the WebGPU implementation used by Chrome, was confirmed in-the-wild. Update to Chrome 146.0.7680.177/178 immediately.

Two cases of unauthenticated RCE and RCE via XSS, over 220,000 instances exposed in OpenCode

CVE-2026-22812 (CVSS 8.8) and CVE-2026-22813 (CVSS 9.4) were disclosed in the open source AI coding agent "OpenCode". Shell commands are executed via XSS of an unauthenticated HTTP server and Markdown renderer. The PoC has been published, with over 220,000 instances exposed online.

Active reconnaissance is underway for Citrix NetScaler ADC's memory-read flaw CVE-2026-3055

Citrix NetScaler ADC / Gateway's CVSS 9.3 out-of-bounds read in SAML IdP configurations is already being scanned by attackers looking for authentication-flow enumeration opportunities.

F5 BIG-IP APM's unauthenticated RCE lands in CISA KEV after Chinese APT source-code theft

F5 BIG-IP APM vulnerability CVE-2025-53521, a CVSS 9.8 unauthenticated RCE, was added to CISA's KEV catalog. It had originally been classified as DoS, but was reclassified after a China-linked APT that compromised F5's network stole source code and vulnerability details. Federal agencies must respond by March 30, 2026.

Three vulnerabilities in LangChain and LangGraph expose files, secrets, and chat history

Three independent vulnerabilities were disclosed in LangChain Core and LangGraph: deserialization that can leak secrets, SQL injection that exposes conversation history, and path traversal that allows arbitrary file reads.

CVSS 10.0 authentication bypass on Quest KACE SMA, actual attack confirmed since early March

A CVSS 10.0 authentication bypass vulnerability CVE-2025-32975 was discovered in Quest KACE SMA, and active attack activity was confirmed starting the week of March 9, 2026. The patch was released in May 2025, but systems that have not been patched are being targeted for attacks.