// Threat Intel

CVE & exploit tracker

A live feed of the vulnerabilities that matter — scored, tagged, and flagged when a public exploit or active exploitation is known.

6
Tracked today
2
Critical
3
Known exploited
3
Public exploit
CVECVSSDetailsTypeStatus
CVE-2026-21899
9.8
CriticalOpenSSH 9.x
Pre-auth heap overflow in the GSSAPI handler allows remote code execution.
Jun 18, 2026
RCE
KEV Exploit
CVE-2026-20455
8.1
Highnginx 1.27
Improper URI normalization lets attackers reach restricted upstreams.
Jun 15, 2026
Auth bypass
Exploit
CVE-2026-19022
9.4
CriticalJenkins LTS
Unsafe deserialization in a core plugin enables arbitrary command execution.
Jun 12, 2026
RCE
KEV
CVE-2026-18744
6.5
MediumPostgreSQL 17
Row-level security bypass exposes restricted rows under specific joins.
Jun 9, 2026
Info disclosure
CVE-2026-17533
7.8
HighKubernetes 1.32
A crafted pod spec escapes resource limits to gain node-level privileges.
Jun 5, 2026
Privesc
KEV Exploit
CVE-2026-16110
3.7
Lowcurl 8.x
Malformed redirect chain causes excessive memory use in edge cases.
Jun 2, 2026
DoS
Pro unlocks real-time alerts. Get notified the moment a CVE matching your stack drops a public exploit.
Upgrade
SysAlbania