Authentication Bypass is a attack_type tracked across 6 threat clusters and 7 intelligence report mentions on ThreatCluster. First observed November 27, 2025; most recent activity July 13, 2026.
In July 2026, Adobe and Microsoft released significant security updates addressing numerous vulnerabilities. Adobe issued 12 bulletins for 88 unique CVEs, with a focus on ColdFusion and Commerce patches, including a…
Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway, formerly MobileIron Sentry. The first, CVE-2026-10520, is an OS command injection flaw allowing remote code execution with root…
Multiple critical vulnerabilities affecting React Server Components and .js have been disclosed, including denial of service, server-side request forgery, and middleware bypass issues. These flaws impact versions 13.x…
JetBrains has issued patches for critical vulnerabilities in JetBrains Hub that could lead to full authentication bypass, account takeover, and privilege escalation. The vulnerabilities, tracked as CVE-2026-56141,…
BeyondTrust has issued a warning regarding a critical remote code execution (RCE) vulnerability in its Remote Support and Privileged Remote Access software. The flaw, tracked as CVE-2026-1731, allows unauthenticated…
GitLab has released critical security patches for six vulnerabilities affecting versions 18.6.1, 18.5.3, and 18.4.5 of its software. These vulnerabilities could allow for authentication bypass and denial-of-service…