https://newsletter.patchdayalert.com/ 2026-04-16 https://newsletter.patchdayalert.com/authors 2026-06-08 https://newsletter.patchdayalert.com/authors/colten-a 2026-04-16 https://newsletter.patchdayalert.com/p/solarwinds-serv-u-dos-exploited-in-the-wild-plus-a-one-packet-comodo-bsod 2026-06-08 PatchDay Alert en 2026-06-08T14:00:00Z SolarWinds Serv-U DoS exploited in the wild, plus a one-packet Comodo BSOD https://newsletter.patchdayalert.com/p/a-perfect-10-in-azure-horizondb-and-a-copilot-rce-you-shouldn-t-ignore 2026-06-05 https://newsletter.patchdayalert.com/p/openshift-clusterrole-blows-wide-open-cisco-ucm-goes-from-ssrf-to-root 2026-06-04 https://newsletter.patchdayalert.com/p/a-9-8-wordpress-site-takeover-a-healthcare-rce-and-two-ni-driver-bugs 2026-06-03 https://newsletter.patchdayalert.com/p/sharepoint-deser-rce-openshift-haproxy-injection-and-a-wordpress-sqli-from-2018 2026-06-02 https://newsletter.patchdayalert.com/p/pan-os-auth-bypass-exploited-in-the-wild-plus-a-9-8-in-redshift-and-a-chrome-sandbox-escape 2026-06-01 https://newsletter.patchdayalert.com/p/go-ssh-silently-trusts-revoked-host-keys-nginx-rewrite-bypass-and-an-oracle-db-takeover-path 2026-05-29 https://newsletter.patchdayalert.com/p/supply-chain-triple-threat-nx-console-tanstack-and-a-cpanel-root-escalation 2026-05-28 https://newsletter.patchdayalert.com/p/go-ssh-host-key-bypass-scores-9-1-nginx-rewrite-bug-close-behind-at-8-1 2026-05-27 https://newsletter.patchdayalert.com/p/drupal-sqli-exploited-in-the-wild-plus-a-perfect-10-dns-poisoning-bug-in-unbound 2026-05-26 https://newsletter.patchdayalert.com/p/unifi-os-scores-a-perfect-10-0-rce-connectwise-automate-agents-can-t-verify-their-own-updates 2026-05-22 https://newsletter.patchdayalert.com/p/cisco-secure-workload-scores-a-perfect-10-0-unauth-cross-tenant-takeover 2026-05-21 https://newsletter.patchdayalert.com/p/keycloak-session-fixation-a-dos-in-a-packet-for-389-ds-and-a-chroot-that-does-nothing 2026-05-20 https://newsletter.patchdayalert.com/p/apache-thrift-9-4-rce-headlines-a-quiet-five-patch-day 2026-05-19 https://newsletter.patchdayalert.com/p/postgresql-buffer-overflow-nginx-rewrite-bypass-and-a-linux-smb-handle-hijack 2026-05-18 https://newsletter.patchdayalert.com/p/cisco-sd-wan-scores-a-perfect-10-0-plus-dnsmasq-and-go-http-2-dos-bugs 2026-05-15 https://newsletter.patchdayalert.com/p/opentelemetry-s-azure-auth-extension-doesn-t-actually-check-your-tokens 2026-05-14 https://newsletter.patchdayalert.com/p/patch-tuesday-may-2026-dns-and-netlogon-rces-hit-9-8-hyper-v-guest-escape-plus-2-dynamics-9-9s-5d3b 2026-05-13 https://newsletter.patchdayalert.com/p/a-9-9-ssrf-to-cred-theft-in-firefighter-s-jira-bot-plus-pgbouncer-pre-auth-overflow 2026-05-12 https://newsletter.patchdayalert.com/p/linux-ksmbd-rce-at-9-8-azure-cloud-shell-injection-at-9-6-and-a-thrift-tls-bypass 2026-05-08 https://newsletter.patchdayalert.com/p/gotenberg-ssrf-scores-9-4-apache-httpd-double-free-enables-rce 2026-05-07 https://newsletter.patchdayalert.com/p/cvss-10-in-eclipse-basyx-unauthenticated-admin-in-opencti-and-a-no-auth-rce-in-meig-iot 2026-05-06 https://newsletter.patchdayalert.com/p/a-9-8-kernel-level-rce-in-linux-ksmbd-and-4-more-you-should-know-about 2026-05-05 https://newsletter.patchdayalert.com/p/gobgp-double-tap-two-7-3-parser-bugs-that-can-kill-your-bgp-sessions 2026-05-04 https://newsletter.patchdayalert.com/p/wordpress-auth-bypass-in-one-get-request-plus-rce-in-krayin-crm 2026-05-01 https://newsletter.patchdayalert.com/p/ksmbd-rce-a-wazuh-cluster-takeover-and-an-openssl-use-after-free 2026-04-30 https://newsletter.patchdayalert.com/p/chrome-sandbox-escape-chain-a-wattbox-sticker-to-root-bug-and-a-dead-apache-project 2026-04-29 https://newsletter.patchdayalert.com/p/five-9-8s-on-soho-routers-totolink-and-d-link-firmware-is-swiss-cheese 2026-04-28 https://newsletter.patchdayalert.com/p/5-bugs-at-cvss-9-8-apache-mina-s-filter-bypassed-twice-wordpress-plugin-to-admin-in-one-click 2026-04-27 https://newsletter.patchdayalert.com/p/two-perfect-10-vulns-entra-id-ssrf-and-bing-rce-both-unauth-both-wide-open 2026-04-24 https://newsletter.patchdayalert.com/p/paperclip-cvss-10-0-unauth-rce-plus-a-9-9-in-funnelformspro-and-froxlor 2026-04-23 https://newsletter.patchdayalert.com/p/avideo-cvss-10-one-websocket-message-owns-every-viewer-no-click-needed 2026-04-22 https://newsletter.patchdayalert.com/p/a-9-9-sandbox-escape-a-spinnaker-double-tap-and-a-one-api-call-privesc 2026-04-21 https://newsletter.patchdayalert.com/p/two-unauth-sqli-bugs-in-digiwin-easyflow-both-9-8 2026-04-20 https://newsletter.patchdayalert.com/p/wordpress-plugin-backdoor-at-cvss-9-8-plus-4-more 2026-04-17 https://newsletter.patchdayalert.com/p/activemq-rce-exploited-in-the-wild-19-more-9-4 2026-04-16 https://newsletter.patchdayalert.com/p/sharepoint-spoofing-exploited-in-the-wild-cisco-ise-9-9s 2026-04-16