PatchNow
Content last updated: Less than a minute ago
7
Critical Vulnerabilities
1
Days Since Newest Entry

☕ Support This Service

+

These automated vulnerability intelligence briefings are provided free of charge to help security teams stay ahead of critical threats. The service monitors CISA KEV additions, performs AI-powered risk analysis, and generates actionable alerts 24/7.

Monthly Running Costs: ~£14 Claude AI (Risk Analysis): £7 • Kagi Search (Threat Intel): £7
🎁 Buy me a coffee

🧠 Vulnerability Classification Logic

+

🔴 HIGH RISK vulnerabilities are those that meet all of the following criteria:

  • MITRE ATT&CK T1190 Classification: The vulnerability enables "Exploit Public-Facing Application" attacks, meaning it can be directly exploited over the internet without user interaction
  • Network Attack Vector: CVSS analysis confirms the vulnerability has a NETWORK attack vector (not LOCAL, ADJACENT, or PHYSICAL)
  • Internet-Facing Deployment Analysis: Claude AI assesses that the vulnerable software is commonly deployed as an internet-facing service with HIGH or VERY_HIGH likelihood
  • Added to CISA KEV quickly: The CVE was issued less than 30 days prior to it being added to the KEV list. Otherwise you would have already patched it, right?
  • Added to KEV recently: The CVE was added to the KEV list in the last 14 days. Because you've patched it by the time it has been in active exploitation for 30 days, haven't you?

Each vulnerability undergoes deployment pattern analysis where Claude AI evaluates the typical deployment scenarios, and internet-facing likelihood.

CVE-2026-20122 - Cisco Catalyst SD-WAN Manager

Internet Exposure Likelihood: HIGH CVSS: 5.4
CVE-2026-20122 is a critical arbitrary file overwrite vulnerability in Cisco Catalyst SD-WAN Manager's API that allows authenticated attackers to gain elevated privileges. This vulnerability is actively exploited in the wild and listed in CISA's KEV catalog.
CVE ADDED: 2026-02-25 54 DAYS BETWEEN CVE AND KEV 1 DAY SINCE KEV
View Details →

CVE-2026-20133 - Cisco Catalyst SD-WAN Manager

Internet Exposure Likelihood: HIGH CVSS: 6.5
CVE-2026-20133 is an information disclosure vulnerability in Cisco Catalyst SD-WAN Manager that allows unauthenticated, remote attackers to view sensitive information by accessing the API. SD-WAN Manager is typically deployed as an internet-facing centralized management platform.
CVE ADDED: 2026-02-25 54 DAYS BETWEEN CVE AND KEV 1 DAY SINCE KEV
View Details →

CVE-2026-34197 - Apache ActiveMQ, Apache ActiveMQ Broker, Apache ActiveMQ All

Internet Exposure Likelihood: HIGH CVSS: 8.8
Critical remote code execution vulnerability in Apache ActiveMQ through the Jolokia JMX-HTTP bridge exposed on web console. Authenticated attackers can exploit crafted discovery URIs to trigger remote Spring XML loading, leading to arbitrary code execution via bean factory methods.
CVE ADDED: 2026-04-07 9 DAYS BETWEEN CVE AND KEV 5 DAYS SINCE KEV
View Details →

CVE-2026-32201 - SharePoint Server, SharePoint Server Subscription Edition, SharePoint Enterprise Server

Internet Exposure Likelihood: VERY_HIGH CVSS: 6.5
SharePoint Server spoofing vulnerability allowing unauthorized attackers to exploit via network access without authentication or user interaction. Listed in CISA KEV indicating active exploitation.
CVE ADDED: 2026-04-14 0 DAY BETWEEN CVE AND KEV 7 DAYS SINCE KEV
View Details →

CVE-2026-35616 - Fortinet FortiClient EMS

Internet Exposure Likelihood: HIGH CVSS: 9.1
Critical unauthenticated remote code execution vulnerability in Fortinet FortiClient EMS management server. Allows attackers to execute arbitrary code via crafted network requests without authentication.
CVE ADDED: 2026-04-04 2 DAYS BETWEEN CVE AND KEV 15 DAYS SINCE KEV
View Details →

CVE-2026-3055 - NetScaler ADC, NetScaler Gateway

Internet Exposure Likelihood: VERY_HIGH CVSS: 9.3
Critical memory overread vulnerability in NetScaler ADC and Gateway when configured as SAML IDP. Actively exploited in the wild with CISA KEV listing, directly exploitable over the network without authentication.
CVE ADDED: 2026-03-23 7 DAYS BETWEEN CVE AND KEV 22 DAYS SINCE KEV
View Details →

CVE-2026-33017 - Langflow AI Platform <

Internet Exposure Likelihood: HIGH CVSS: 9.3
Critical unauthenticated remote code execution vulnerability in Langflow AI platform via public flow build endpoint. Attackers can execute arbitrary Python code without authentication, leading to complete system compromise.
CVE ADDED: 2026-03-20 5 DAYS BETWEEN CVE AND KEV 27 DAYS SINCE KEV
View Details →

Generated by PatchNow Intelligence System | Data Source: CISA KEV + CIRCL.LU + Claude Analysis

📄 Download JSON Data | 📡 RSS Feed