https://a13e.com/feed.xmlA13E IntelDaily UK cyber threat intelligence2026-06-13T06:00:00ZA13EPublished by A13E. Reproduction with attribution permitted.https://a13e.com/intel/2026-06-13/Oracle PeopleSoft CVE-2026-35273 - Stability Brief for Exposure Owners2026-06-13T06:00:00Z2026-06-13T06:00:00ZToday's intelligence contains material watchpoints across PeopleSoft, Ivanti Sentry, Langflow, ServiceNow, File Browser, and EU advisory routing.https://a13e.com/intel/2026-06-12/Broad Advisory Owner Queue Leads 12 June Cyber Checks2026-06-12T06:00:00Z2026-06-12T06:00:00ZToday's intelligence consolidates 29 findings (29 new, 0 updates) across GitLab, Splunk, Traefik, Flowise, OpenBullet2, samlify, Routinator, Nginx Proxy Manager, OpenStack Ironic, ICS, endpoint, and application surfaces. The right response is disciplined owner assignment, not exploitation language.https://a13e.com/intel/2026-06-11/Ivanti Sentry CVE-2026-10520 - Security Appliance Patch Routing Leads 11 June Triage2026-06-11T06:00:00Z2026-06-11T06:00:00ZToday's intelligence consolidates 24 findings (23 new, 1 update) across edge appliances, identity, backup, endpoint, Palo Alto, FreeBSD, kernel, and developer-supply-chain surfaces. Ivanti Sentry leads because exposed security management planes need fast owner confirmation and patch routing.https://a13e.com/intel/2026-06-10/Microsoft Kerberos KDC CVE-2026-47288 - Patch Tuesday Identity Queue Leads 10 June Triage2026-06-10T06:00:00Z2026-06-10T06:00:00ZToday's intelligence consolidates 22 new findings and 12 updates across active exploitation, backup, VPN, browser, endpoint, package, Linux, and developer-supply-chain stories. The lead is Microsoft Kerberos KDC CVE-2026-47288 because identity infrastructure needs named maintenance ownership.https://a13e.com/intel/2026-06-09/BerriAI LiteLLM CVE-2026-42271 KEV Listing Leads AI Gateway Triage2026-06-09T06:00:00Z2026-06-09T06:00:00ZToday’s intelligence consolidates 19 priority findings plus updates to ongoing exploited, supply-chain, VPN, CMS, Linux, developer-tooling, and managed-file-transfer stories. The lead change is LiteLLM entering CISA KEV, which moves AI gateway exposure into P1 triage.https://a13e.com/intel/2026-06-08/SolarWinds Serv-U CVE-2026-28318 KEV Exploitation Leads a Broad Multi-Owner Day2026-06-08T06:00:00Z2026-06-08T06:00:00ZToday's intelligence spans many teams, not a single headline. CISA KEV-listed SolarWinds Serv-U (CVE-2026-28318) and exploited Everest Forms Pro (CVE-2026-3300) and Cisco SD-WAN Manager (CVE-2026-20245) lead, followed by two new high-confidence enterprise findings (authentik CVE-2026-41577 and IBM WebSphere CVE-2026-9330), an endpoint supply-chain compromise (Hola Browser), browser and extension governance, a developer and runtime dependency queue, and WordPress plugin exposure.https://a13e.com/intel/2026-06-07/Oracle Payments CVE-2026-46818 - ERP Owner Routing Moves to the Front2026-06-07T06:00:00Z2026-06-07T06:00:00ZToday's intelligence is consolidated into six narrative sections covering 15 underlying findings, plus updates to ongoing exposure and supply-chain stories. Oracle Payments leads because ERP patch ownership can fall outside normal infrastructure queues.https://a13e.com/intel/2026-06-06/Arista EOS CVE-2025-5088 - EU Advisory Burst Widens the Owner Assignment Queue2026-06-06T06:00:00Z2026-06-06T06:00:00ZToday's intelligence is consolidated into six priority findings plus one material npm supply-chain update. Arista EOS leads because two separate BSI/CERT-Bund advisory clusters put network owners at the front of the routing queue.https://a13e.com/intel/2026-06-05/Cisco Unified CM CVE-2026-20230 - WebDialer Exposure Leads Today's Patch Queue2026-06-05T06:00:00Z2026-06-05T06:00:00ZToday's intelligence is consolidated into six priority findings plus updates to ongoing stories. Cisco Unified CM / CM SME CVE-2026-20230 leads because NCSC-NL and CERT-FR corroborate the patch path and WebDialer exposure condition.https://a13e.com/intel/2026-06-04/Mirasvit CVE-2026-45247 Enters CISA KEV as PAN-OS and TA4922 Pressure Builds2026-06-04T06:00:00Z2026-06-04T06:00:00ZToday's intelligence is consolidated into six priority findings plus updates to ongoing stories. The strongest action is a CISA KEV-driven check for Mirasvit Full Page Cache Warmer CVE-2026-45247, followed by exposed PAN-OS gateways and TA4922 hunting.https://a13e.com/intel/2026-06-03/Android CVE-2025-48595 and CISA KEV CVE-2022-0492 Lead a Patch-Routing Day2026-06-03T06:00:00Z2026-06-03T06:00:00ZThe 03 June intelligence sweep is consolidated into five priority findings plus updates to ongoing stories. The highest-priority actions are patch compliance for KEV-listed Android CVE-2025-48595, Linux/container checks for KEV-listed CVE-2022-0492, and owner routing for a broad EU advisory cluster.https://a13e.com/intel/2026-06-02/Actively Exploited WordPress Admin-Takeover Flaw Leads a Supply-Chain-Heavy Day2026-06-02T06:00:00Z2026-06-02T06:00:00ZToday's actionable set is led by an actively exploited WP Maps Pro flaw (CVE-2026-8732) that lets attackers create WordPress administrator accounts, alongside a credential-stealing npm supply-chain compromise affecting Red Hat packages and a separate report of OpenAI Codex token theft. Two further active-exploitation reports (Windows Netlogon, a Linux kernel root flaw) are on watch pending firm identifiers.https://a13e.com/intel/2026-05-31/Gogs No-CVE RCE Report - Exposure Review Whilst PAN-OS CVE-2026-0257 KEV/Exploitation Context Moves to P12026-05-31T06:00:00Z2026-05-31T06:00:00ZA new LOW confidence Gogs remote-code-execution report needs exposure discovery, not incident language. The stronger operational move is Palo Alto Networks CVE-2026-0257, now aligned with broader Known Exploited/KEV tracking and updated exploitation context from NCSC-NL and Rapid7.https://a13e.com/intel/2026-06-01/Cyber Threat Watchlist for 2026-06-012026-06-01T06:00:00Z2026-06-01T06:00:00ZA quiet weekend backlog with one confirmed actively exploited issue that needs attention now, Marimo CVE-2026-39987 on the CISA Known Exploited Vulnerabilities list, alongside routine Google Chrome and developer-tooling patching.