CWE-20 - Improper Input Validation is a cwe tracked across 36 threat clusters and 60 intelligence report mentions on ThreatCluster. First observed April 16, 2026; most recent activity July 16, 2026.
Cisco has disclosed a critical authentication bypass vulnerability, CVE-2026-20182, affecting its Catalyst SD-WAN Controller and Manager. This flaw allows unauthenticated remote attackers to bypass authentication and…
A joint advisory from 21 global cybersecurity agencies warns that Russian state hackers from the FSB's Center 16 are exploiting poorly configured routers to infiltrate critical infrastructure networks worldwide. The…
Citrix NetScaler ADC and Gateway are affected by CVE-2026-3055, a critical vulnerability due to insufficient input validation during SAML authentication, leading to memory overread. Exploitation attempts have surged,…
CVE-2025-34291 is a critical vulnerability affecting Langflow, an open-source AI agent platform, allowing attackers to take over accounts and execute arbitrary code. Disclosed on December 5, 2025, this vulnerability has…
Ubiquiti has issued security updates for five critical vulnerabilities in UniFi OS, including three maximum severity flaws (CVE-2026-34908, CVE-2026-34909, CVE-2026-34910) that allow remote attackers to execute…
Two critical vulnerabilities, CVE-2026-20186 and CVE-2026-20180, have been published for Cisco Identity Services Engine (ISE) on April 15, 2026. Both vulnerabilities allow authenticated remote attackers with Read Only…
Multiple high-severity vulnerabilities have been identified in the Angular Language Service extension for Visual Studio Code, potentially allowing remote code execution (RCE) attacks. These vulnerabilities stem from…
Citrix disclosed six high-severity vulnerabilities in NetScaler ADC and Gateway appliances, including CVE-2026-8451, which allows unauthenticated memory disclosure when configured as a SAML identity provider. Other…
Progress Software has issued urgent advisories regarding critical vulnerabilities in its MOVEit Automation platform, specifically CVE-2026-4670 and CVE-2026-5174. These vulnerabilities allow attackers to bypass…
Multiple high-severity vulnerabilities have been identified in GitLab Community Edition (CE) and Enterprise Edition (EE) products, affecting versions 12.10.0 to 19.0.1. The vulnerabilities, including CVE-2026-6552,…