a13e Intel

BerriAI LiteLLM CVE-2026-42271 KEV Listing Leads AI Gateway Triage

Finding 1: BerriAI LiteLLM CVE-2026-42271 is now KEV-listed

Confidence: Medium

CISA KEV confirms exploitation of CVE-2026-42271 in BerriAI LiteLLM. Treat LiteLLM and AI gateway or proxy deployments as P1: identify exposed instances, prioritise internet-facing or multi-tenant deployments, and track fixed versions or compensating controls.

Sources: CISA KEV.

Finding 2: Kemp LoadMaster CVE-2026-33691 enters edge patch routing

Confidence: Low

BSI CERT-Bund published WID-SEC-2026-1812 for Kemp/Progress LoadMaster. Edge and network teams should confirm exposed ADC or load-balancer deployments and validate fixed-version guidance.

Sources: BSI CERT-Bund WID-SEC-2026-1812.

Finding 3: Netty CVE-2026-44250 opens Java dependency review

Confidence: Low

BSI published WID-SEC-2026-1814 for Netty. Java owners should query SBOMs and package manifests first, because Netty exposure usually appears through application dependencies rather than a single server product.

Sources: BSI CERT-Bund WID-SEC-2026-1814.

Finding 4: VMware Cloud Foundation Operations CVE-2026-41722 needs management-plane review

Confidence: Low

BSI published a high-severity advisory for VMware Cloud Foundation Operations. Virtualisation and operations owners should confirm whether management consoles are exposed to broad admin populations.

Sources: BSI CERT-Bund WID-SEC-2026-1813.

Finding 5: rclone CVE-2026-49980 reaches backup and sync queues

Confidence: Low

BSI added rclone CVE-2026-49980. Inventory endpoints, CI runners, backup jobs, and admin workstations where rclone may sit outside central server CMDBs.

Sources: BSI CERT-Bund WID-SEC-2026-1811.

Finding 6: Check Point Remote/Mobile Access VPN CVE-2026-50751 has fixed-build advisory coverage

Confidence: Low

NCSC-NL published NCSC-2026-0179 for fixed Check Point Remote and Mobile Access VPN vulnerabilities. VPN and edge teams should validate fixed builds and keep this ticket separate from the older Qilin-linked Check Point thread.

Sources: NCSC-NL NCSC-2026-0179.

Finding 7: Laravel CVE-2026-48041 has BSI and CERT-FR corroboration

Confidence: Medium

BSI and CERT-FR both surfaced the Laravel security-bypass advisory. Application owners using Laravel should validate dependency update guidance rather than waiting for estate-wide exploit reporting.

Sources: BSI CERT-Bund WID-SEC-2026-1815 and CERT-FR CERTFR-2026-AVI-0703.

Finding 8: Red Hat Quay CVE-2026-11569 is listed by BSI as unpatched

Confidence: Low

BSI marks the Red Hat Quay XSS item as unpatched. Quay owners should inventory instances, reduce admin and UI exposure where possible, and watch vendor channels for remediation.

Sources: BSI CERT-Bund WID-SEC-2026-1816.

Finding 9: Bitdefender Napoca CVE-2026-10046/CVE-2026-10047 lands in NVD

Confidence: Low

NVD published two bare-metal hypervisor out-of-bounds write records for Bitdefender Napoca. Route only to endpoint or security-product owners where Napoca is actually deployed.

Sources: NVD CVE-2026-10046 and CVE-2026-10047.

Finding 10: OpenShift Router/Route CVE-2026-46579/CVE-2026-1784 needs platform-owner review

Confidence: Low

OpenShift platform owners should review route termination and pod-reachability assumptions. Keep severity language restrained until Red Hat details are confirmed.

Sources: NVD and Red Hat CVE pages for CVE-2026-46579 and CVE-2026-1784.

Finding 11: X.Org/Xwayland CVE-2026-50257/CVE-2026-50258/CVE-2026-50259 affects Linux GUI baselines

Confidence: Low

Queue distro and package checks for Linux desktop, VDI, kiosk, and server GUI packages. No exploitation claim is supported by today’s intelligence.

Sources: NVD CVE-2026-50257, CVE-2026-50258, and CVE-2026-50259.

Finding 12: 7-Zip CVE-2026-48103/CVE-2026-48111 needs endpoint baseline checks

Confidence: Low

Validate managed 7-Zip versions and look for stale portable copies in golden images, admin toolkits, and bundled application directories. This is a hygiene and exposure-reduction task, not an incident claim.

Sources: NVD CVE-2026-48103 and CVE-2026-48111.

Finding 13: Microsoft Edge mobile CVE-2026-35429 needs MDM compliance validation

Confidence: Low

MSRC published a mobile Edge spoofing issue. Confirm managed mobile fleets and BYOD guidance are moving Edge to fixed builds.

Sources: Microsoft Security Response Centre CVE-2026-35429.

Finding 14: Netty GHSA cluster affects filtering and DoS surfaces

Confidence: Low

Run dependency graph queries for Netty in internet-facing Java services, especially RedisDecoder, HAProxy protocol, subnet-filtering, and default-configuration use cases. Treat this as SBOM-led triage.

Sources: GitHub Security Advisories GHSA-3qp7-7mw8-wx86, GHSA-6ghj-frrj-jjj3, GHSA-c2rx-5r8w-8xr2, and GHSA-cc37-9q2j-3hfv.

Finding 15: Authlib CVE-2026-41479 affects Python OAuth redirect handling

Confidence: Low

Identify Authlib usage in Python identity flows and schedule version validation. OAuth redirect handling bugs can be high-leverage even when initial severity appears moderate.

Sources: GitHub Security Advisory GHSA-w8p2-r796-3vmq.

Update: Shai-Hulud PyPI trojanisation widens to 19 science-focused packages

Confidence: Low

Previously covered as a supply-chain watch item; today’s delta is expanded reported reach to 19 science-focused PyPI packages. Research, science, and ML owners should compare package locks and CI installs with the published package list.

Sources: BleepingComputer.

Finding 16: FUXA CVE-2026-47719/CVE-2026-47720/CVE-2026-47721 affects web-managed OT dashboards

Confidence: Medium

FUXA has a GHSA burst covering unauthenticated SSRF, SQL injection, and privilege escalation paths. Identify web-managed OT or industrial dashboard deployments and route upgrade or compensating-control review.

Sources: GitHub Security Advisories GHSA-w86f-rf9w-h3x6, GHSA-h9fj-c2qr-76g2, and GHSA-8ghr-w65f-j3qr.

Finding 17: Later Netty GHSA batch expands Java dependency patch routing

Confidence: Medium

A distinct Netty batch includes CVE-2026-44894, CVE-2026-45416, CVE-2026-45673, CVE-2026-45674, CVE-2026-47244, and CVE-2026-47691. Prioritise internet-facing HTTP/2, DNS, and QUIC use cases.

Sources: GitHub Security Advisories GHSA-cmm3-54f8-px4j, GHSA-xmv7-r254-6q78, GHSA-676x-f7gg-47vc, and GHSA-5x3r-wrvg-rp6q.

Finding 18: Puma CVE-2026-47736/CVE-2026-47737 adds Ruby web-tier DoS checks

Confidence: Low

Ruby web-tier owners should check Puma deployments behind load balancers or proxies that pass PROXY Protocol v1 traffic. Prioritise internet-facing services and shared hosting patterns.

Sources: GitHub Security Advisories GHSA-qpgp-93vx-g8v8 and GHSA-2vqw-3mp8-cgmx.

Finding 19: PHPSpreadsheet CVE-2026-45034 reopens spreadsheet parsing review

Confidence: Low

Applications ingesting untrusted spreadsheets should identify PHPSpreadsheet versions and confirm the bypass fix is pulled once package metadata is available. Treat file-ingestion paths as the first priority.

Sources: GitHub Security Advisory GHSA-87m4-826x-3crx.

Update: Proofpoint UNK_DeadDrop targets developers for cryptocurrency theft

Confidence: Low

Today’s delta is developer-focused phishing detail from Proofpoint, including repository-lure and wallet-theft relevance. Extract Proofpoint IOCs and check developer email, repository, and wallet-theft telemetry.

Sources: Proofpoint.

Update: TeamPCP supply-chain campaign remains active through 07 June 2026

Confidence: Low

Today’s delta is continued campaign activity through 07 June 2026. Keep this as developer and supply-chain watch, with package and repository telemetry reviewed where TeamPCP indicators are relevant.

Sources: SANS ISC.

Update: Everest Forms Pro CVE-2026-3300 exploitation raises WordPress takeover risk

Confidence: Medium

Today’s delta is active exploitation reporting for Everest Forms Pro CVE-2026-3300. Confirm whether the plugin is installed, apply fixed versions, and prioritise sites with public forms or elevated WordPress roles.

Sources: SecurityWeek and BleepingComputer.

Update: SolarWinds Serv-U CVE-2026-28318 exploitation remains managed-file-transfer P1

Confidence: Medium

Serv-U remains a P1 managed-file-transfer exposure because exploitation is linked through CISA and SolarWinds reporting in the current corpus. Verify fixed versions, restrict internet exposure, and review crash, restart, and authentication events.

Sources: SecurityWeek, CISA, and SolarWinds.

Update: Gogs patches critical zero-day enabling remote code execution

Confidence: Low

Today’s delta is patch-availability reporting for a Gogs remote-code-execution issue without a CVE in this corpus. Inventory self-hosted Gogs, validate fixed builds, and restrict internet-exposed admin paths.

Sources: BleepingComputer.

Update: Check Point VPN zero-day/Qilin thread needs ransomware-linked edge validation

Confidence: Low

Today’s delta is patch-released status and ransomware-linked reporting. Validate Check Point VPN exposure, patch state, and telemetry, and keep this separate from CVE-2026-50751.

Sources: BleepingComputer.

Update: Linux one-character local-root flaw has public exploit and patch routing

Confidence: Low

Today’s delta is public exploit and patch-routing pressure for the Linux local-root flaw. Watch distro advisories and prioritise multi-user hosts, CI runners, developer workstations, and shared bastion systems.

Sources: The Hacker News.

Update: VS Code extension auto-update delay changes extension-governance posture

Confidence: Low

Today’s delta is supply-chain governance impact from the two-hour auto-update delay. Review developer endpoint policy for approved extensions, rapid malicious-extension revocation, and visibility into delayed updates.

Sources: The Hacker News.

Update: Miasma/IronWorm npm and GitHub cluster continues to widen

Confidence: Medium

Today’s delta is expanded npm and GitHub reach. Keep duplicate rows consolidated, then scan lockfiles, npm caches, developer endpoints, and CI logs. Rotate GitHub or npm tokens where malicious package installation is confirmed.

Sources: The Hacker News and Microsoft Security Blog.

Why This Matters

The day is not defined by one patch queue. It is a routing problem across AI gateways, edge and VPN infrastructure, Java and Python dependencies, endpoint packages, WordPress, developer supply chain, and managed file transfer. The LiteLLM KEV entry deserves the fastest response because it is the newly promoted KEV item in today’s intelligence.

• Recommended Actions
• Treat LiteLLM and exposed AI gateway or proxy deployments as P1 until inventory and compensating controls are confirmed.
• Split the remaining work into named owner queues: edge/VPN, Java and application dependencies, endpoint packages, CMS, developer supply chain, and managed file transfer.
• Keep LOW / UNVERIFIED items in owner-assignment language. Do not turn feed-derived advisories into exploitation claims.
• For updated active-exploitation items, confirm fixed versions and review exposure before broadening incident scope.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 09 June 2026.

SolarWinds Serv-U CVE-2026-28318 KEV Exploitation Leads a Broad Multi-Owner Day

Update: SolarWinds Serv-U CVE-2026-28318 is CISA KEV-listed and needs patch verification

Confidence: High for CISA and SolarWinds linkage

Previously covered 07 June 2026; today's delta: a patch is now the key control, and CISA, SolarWinds, and BleepingComputer reporting keeps Serv-U CVE-2026-28318 in the exploited managed-file-transfer queue.

Serv-U exposure is operationally sensitive because managed file transfer systems often sit at trust boundaries. The action is not to widen the claim. It is to confirm fixed Serv-U versions, reduce unnecessary internet exposure, and look for crash or restart events around the advisory window.

Action: Route to managed file transfer owners and ask for version proof, exposure status, and crash or restart event review.

Sources: CISA Known Exploited Vulnerability alert, SolarWinds advisory, and BleepingComputer reporting.

Update: Everest Forms Pro CVE-2026-3300 stays a WordPress estate check

Confidence: Medium

Previously covered 07 June 2026; today's delta: reporting raises the severity emphasis for Everest Forms Pro CVE-2026-3300, and exploitation coverage continues.

This belongs in the same CMS risk conversation as Gutenberg Essential Blocks, but it is not the same exposure. Everest Forms Pro should be checked on WordPress-heavy estates, especially sites with public forms, elevated WordPress roles, or frequent plugin exceptions.

Action: Confirm whether Everest Forms Pro is installed, validate fixed-version status, and prioritise public-facing sites with privileged WordPress users.

Sources: BleepingComputer and The Hacker News reporting.

Update: Cisco SD-WAN Manager CVE-2026-20245 management-plane exposure needs patch verification

Confidence: High for exploitation and advisory linkage; Medium for UK impact

Previously covered 07 June 2026; today's delta: a fixed version is now available, so this moves to patch verification for Cisco SD-WAN Manager.

Treat this as a management-plane exposure review. Cisco's advisory and current reporting keep the focus on SD-WAN Manager, so the work is specific: identify affected managers, restrict management access, review authentication and RBAC logs, and follow Cisco fixed-version guidance.

Action: Give this to network and SD-WAN platform owners, not a generic endpoint queue. Prioritise internet-reachable or broadly accessible management interfaces.

Sources: Cisco security advisory and The Register reporting.

Finding 1: authentik CVE-2026-41577 identity-provider upgrade needs owner routing

Confidence: High

authentik enters today's queue through CVE-2026-41577, with a vendor GHSA advisory and an NVD entry. Identity providers are high-value because a weakness there can affect authentication and administrative access across many downstream services, so this deserves owner-specific routing rather than a generic patch queue.

Action: Confirm authentik versions, schedule the upgrade to fixed releases, and review identity-provider logs for anomalous authentication or administrative events.

Sources: authentik GHSA-4v4x-x5pr-8gp2 and NVD CVE-2026-41577.

Finding 2: IBM WebSphere Application Server CVE-2026-9330 needs enterprise patch routing

Confidence: High

IBM WebSphere Application Server enters the queue through CVE-2026-9330, with an IBM support advisory and an NVD entry. WebSphere often supports finance and government workloads, so exposure and change-window constraints matter as much as the patch itself.

Action: Route to WebSphere administrators, validate 8.5 and 9.0 exposure, apply IBM fixed-version guidance, and capture the business owner and maintenance-window constraints.

Sources: IBM WebSphere advisory (support node 7274733) and NVD CVE-2026-9330.

Finding 3: Hola Browser for Windows compromise expands endpoint supply-chain review

Confidence: Medium / Unverified

Sophos and BleepingComputer report a compromise of Hola Browser for Windows that delivers an unexpected executable and a cryptominer. Treat installed copies as endpoint supply-chain risk, not ordinary browser drift.

Action: Inventory endpoints for Hola Browser, remove unapproved installs, and hunt for the unexpected executable and cryptominer indicators described in the Sophos write-up.

Sources: Sophos research and BleepingComputer reporting.

Update: UNC3753 law-firm campaign should feed legal-sector detections

Confidence: High for Mandiant reporting; Medium for direct client applicability

Previously covered 07 June 2026; today's delta: Mandiant's legal-sector reporting remains material and should now be converted into detection and process checks.

Legal-sector environments should review helpdesk callback verification, RMM allowlisting, removable-media controls, and WinSCP or Rclone exfiltration monitoring. Keep the scope tied to the cited Mandiant report and do not imply wider victim counts beyond the evidence.

Action: Build a short legal-sector watch pack from the Mandiant TTPs and indicators, then map it to helpdesk, endpoint, identity, and data-egress controls.

Sources: Google Cloud and Mandiant reporting, with a VirusTotal collection reference.

Update: IronWorm/Miasma npm and GitHub cluster keeps widening

Confidence: Medium

Previously covered 07 June 2026; today's delta: the supply-chain reach has widened, and current Microsoft and The Hacker News reporting keeps the IronWorm/Miasma cluster active across npm and GitHub.

This is still one consolidated supply-chain story. The action should be evidence led: search lockfiles, npm caches, developer endpoints, CI logs, and repository interactions. Rotate GitHub or npm tokens where malicious package installation or token exposure is confirmed, not as a blanket response.

Action: Keep duplicate rows merged, run focused package and token-exposure checks, and document which repositories or developers have real exposure evidence.

Sources: Microsoft security research and The Hacker News reporting.

Finding 4: Securly Chrome Extension CVE-2026-8888/CVE-2026-8889 needs managed-extension inventory

Confidence: Low / Unverified

Securly Chrome Extension 3.0.7 has NVD-reported HTTP configuration transport and deprecated SHA-1 integrity issues under CVE-2026-8888 and CVE-2026-8889. This is most relevant to education and child-safety environments that deploy managed extensions.

Action: Locate managed Chrome extension deployments, confirm the installed version, and ask the administrator or vendor owner for remediation status.

Sources: NVD CVE-2026-8888 and NVD CVE-2026-8889.

Finding 5: Google Chrome 149.0.7827.53 CVE cluster needs endpoint update validation

Confidence: Low / Unverified

A cluster of Chrome CVEs (CVE-2026-10988, CVE-2026-10995, CVE-2026-10968, CVE-2026-11102) maps to Chrome 149.0.7827.53. The work is fleet version validation rather than an emergency.

Action: Validate that managed endpoints are on Chrome 149.0.7827.53 or later, prioritise unmanaged or delayed-update endpoints across Windows and macOS fleets, and record exceptions by operating system and channel.

Sources: NVD entries for the Chrome 149 CVE cluster.

Finding 6: Gutenberg Essential Blocks CVE-2026-10586 SSRF enters the CMS-plugin queue

Confidence: Low / Unverified

NVD describes server-side request forgery in the Essential Blocks page-builder plugin up to and including version 6.1.3, through the saveaigenerated_image() function, with Wordfence cited as a supporting reference. The collected NVD text describes the issue as reachable by authenticated attackers with Author-level access and above, which makes it a CMS-permission and plugin-inventory problem rather than a broad unauthenticated emergency.

Action: Inventory WordPress sites using the essential-blocks plugin at or below 6.1.3, reduce Author-level access where it is not needed, and watch Wordfence or vendor channels for fixed-version confirmation.

Sources: NVD CVE-2026-10586, Wordfence reference, and the WordPress plugin Trac reference.

Finding 7: Developer and runtime dependency CVEs need owner mapping

Confidence: Low / Unverified

Five developer and runtime dependency CVEs need SBOM-driven owner mapping rather than emergency patching: Cilium eBPF LoadCollectionSpec integer overflow (CVE-2026-10722), rrdtool stack buffer overflow (CVE-2026-43958), ansible-core ansible-galaxy argument injection (CVE-2026-11332), libexpat use-after-free before 2.8.2 (CVE-2026-50219), and pip script extraction outside the installation directory (CVE-2026-8643). Route Cilium to Kubernetes and platform owners; ansible-core and pip to automation and CI owners running installs with elevated permissions; rrdtool to monitoring-appliance owners; and libexpat to teams that own XML-parsing dependencies in base images and runtimes.

Action: Inventory these packages across base images, CI runners, and runtimes, pin sources, and apply fixed versions as upstream and distribution advisories confirm them.

Sources: MSRC entries for CVE-2026-10722, CVE-2026-43958, CVE-2026-11332, CVE-2026-50219, and CVE-2026-8643.

Update: Chinese APT persistence tooling is a detection review, not a victim-scope claim

Confidence: Low / Unverified

Previously covered 07 June 2026; today's delta: attribution reporting has firmed up for the Chinese APT persistence-malware story.

The sensible use of this item is detection work. The current intelligence supports review of Microsoft 365 persistence, backdoor activity, and lateral-access telemetry. It does not support expanding victim-scope claims beyond the cited reporting.

Action: Convert the report into detection hypotheses and telemetry checks, and keep confidence language restrained.

Source: BleepingComputer reporting.

Why This Matters

Today is a queue discipline problem, not a single catastrophic headline. Managed file transfer, WordPress, SD-WAN, identity and application servers, endpoint supply chain, browser governance, and developer dependencies all need different owners and different proof.

The highest risk is misrouting. A CISA KEV-listed managed file transfer exposure should not wait behind routine endpoint patching. New high-confidence identity and application-server findings should reach their owners directly rather than sitting in a generic queue. A developer-dependency cluster should be mapped through SBOM inventory, not ignored because no single item is an emergency.

• Recommended Actions
• P1: Verify SolarWinds Serv-U (CVE-2026-28318) fixed versions, reduce internet exposure, and review crash or restart evidence. It is CISA KEV-listed.
• P1: Verify Cisco SD-WAN Manager (CVE-2026-20245) fixed version, management-plane exposure, and authentication or RBAC logs.
• P1: Route authentik (CVE-2026-41577) and IBM WebSphere (CVE-2026-9330) to identity and application-server owners for upgrade and exposure validation.
• P1: Inventory the developer and runtime dependency cluster (Cilium, ansible-core, libexpat, pip, rrdtool) and the IronWorm/Miasma supply-chain story, and triage the Hola Browser endpoint compromise.
• P2: Check WordPress estates for Everest Forms Pro (CVE-2026-3300) and Gutenberg Essential Blocks (CVE-2026-10586), validate Chrome fleet version drift, and inventory the Securly extension.
• P2: Convert UNC3753 reporting into legal-sector detections and review Chinese APT persistence telemetry, with restrained attribution and scope language.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 08 June 2026.

Oracle Payments CVE-2026-46818 - ERP Owner Routing Moves to the Front

Finding 1: Oracle Payments CVE-2026-46818 enters the ERP owner assignment queue

Confidence: Medium

Oracle Payments in Oracle E-Business Suite 12.2.3 through 12.2.15 is the lead item in today's intelligence. NVD describes CVE-2026-46818 as an unauthenticated network-access issue over HTTPS affecting the File Transmission component, with confidentiality and integrity impacts in Oracle Payments.

The practical risk is ownership delay. Finance and ERP applications are often patched by application teams, not infrastructure teams, so this item needs a named Oracle E-Business Suite owner rather than a generic vulnerability ticket.

Action: Confirm whether Oracle Payments is deployed, whether it is internet-adjacent, and whether the April 2026 Oracle CPU guidance has been applied.

Sources: NVD CVE-2026-46818 and Oracle Critical Patch Update, April 2026.

Finding 2: IBM Aspera, RabbitMQ, and go-git need owner mapping before severity escalation

Confidence: Low

IBM Aspera HSTE/HSTS 3.7.4 through 4.4.7 Fix Pack 1 is in scope for CVE-2026-8179 and CVE-2026-8180. The immediate task is to find Aspera services, especially internet-reachable asperahttpd exposure, and patch according to IBM's PSIRT notice.

RabbitMQ CVE-2026-44838 affects MQTT-enabled deployments in versions 4.2.0 through 4.2.3, with RabbitMQ 4.2.4 listed as the fixed line in the collected advisory. go-git CVE-2026-45022 belongs with developer-platform and release-engineering owners because the affected library can sit inside tooling that makes trust, policy, or signature-verification decisions.

Action: Split the queue. Send Aspera to managed file transfer owners, RabbitMQ MQTT to broker owners, and go-git to application security, platform engineering, and release tooling owners.

Sources: NVD CVE-2026-8179, NVD CVE-2026-8180, IBM PSIRT, NVD CVE-2026-44838, RabbitMQ GHSA-x866-xp2g-cx8v, NVD CVE-2026-45022, and go-git GHSA-389r-gv7p-r3rp.

Finding 3: radare2-mcp, SmarterMail, and Zabbix add local tooling, mail, and monitoring checks

Confidence: Low

radare2-mcp CVE-2026-6942 affects radare2-mcp 1.6.0 and earlier. The reason it matters is workflow placement: MCP tooling can run on analyst, developer, reversing, or CI systems where command injection may cross from a tooling issue into local compromise.

SmarterMail CVE-2026-7807 affects SmarterTools SmarterMail builds before 9560, according to NVD. Zabbix CVE-2026-23925 needs a permission review for roles with template or host write access, because monitoring platforms often have broad visibility across production environments.

Action: Inventory radare2-mcp use, confirm SmarterMail build levels, and audit Zabbix roles with template or host write permissions before patching is treated as routine maintenance.

Sources: NVD CVE-2026-6942, NVD CVE-2026-7807, and NVD CVE-2026-23925.

Update: Cisco SD-WAN, SolarWinds Serv-U, Everest Forms Pro, and ASUS Business Manager stay in exposure-review mode

Confidence: Low

Previously covered 06 June 2026; today's delta: these items remain active owner checks, but the current intelligence still keeps the claims narrow and low-confidence where vendor or government mapping is incomplete.

Cisco SD-WAN remains a no-CVE exposure-review item in the collected reporting. SolarWinds Serv-U reporting points to exploitation of a recently patched flaw to crash servers, but the right next step is patch-channel verification. Everest Forms Pro CVE-2026-3300 remains a WordPress estate check, and ASUS Business Manager Service CVE-2026-7480 / ZDI-26-328 belongs with endpoint owners.

Action: Check exposed SD-WAN management/control-plane assets, verify SolarWinds Serv-U patch status through official channels, identify Everest Forms Pro installations, and inventory ASUS Business Manager Service on managed endpoints.

Sources: The Register, BleepingComputer, The Hacker News, and Zero Day Initiative ZDI-26-328.

Update: Mandiant law-firm targeting and Chinese APT reporting need detection work, not overstatement

Confidence: Low

Previously covered 06 June 2026; today's delta: the legal-sector and Chinese APT items remain material, but both need careful wording and detection preparation before wider amplification.

Mandiant's law-firm targeting report should feed a legal-sector watch pack built from its indicators and TTPs. The Chinese APT persistence-malware report should feed identity-persistence and lateral-access telemetry reviews. The collected intelligence does not support adding new victim-scope claims beyond the cited reports.

Action: Extract indicators, TTPs, and detection hypotheses into sector-specific watch packs. Keep attribution and scope language tied to the named sources.

Sources: Google Cloud/Mandiant and BleepingComputer.

Finding 6: IronWorm/Miasma and Hola Browser keep supply-chain and endpoint hygiene in scope

Confidence: Medium

IronWorm/Miasma remains one consolidated supply-chain cluster. The current intelligence ties together npm poisoned-package reporting, a Miasma variant, and Microsoft GitHub repository reporting, but the action still depends on local evidence of package installation, cache hits, repository interaction, or token exposure.

Hola Browser for Windows is a separate endpoint supply-chain hygiene item. BleepingComputer reports a compromised distribution or update path delivering a cryptominer, so teams should inventory endpoints, remove unapproved installs, and validate any exceptions by source and hash.

Action: Scan lockfiles, npm caches, developer endpoints, and CI logs for IronWorm/Miasma indicators as package lists are validated. Rotate tokens only where installation or exposure evidence exists, and remove unapproved Hola Browser installs.

Sources: BleepingComputer and The Hacker News.

Why This Matters

Today's intelligence is about getting the right ticket to the right owner. ERP, managed file transfer, brokers, developer libraries, MCP tooling, mail, monitoring, endpoint software, and npm/GitHub supply-chain exposure do not share the same remediation path.

The safest posture is to avoid severity inflation. Treat Oracle Payments as the lead because it has a clear enterprise-owner gap. Treat the lower-confidence items as fast exposure checks, and turn the supply-chain items into evidence-led searches before declaring incident scope.

• Recommended Actions
• P1: Route Oracle Payments CVE-2026-46818 to Oracle E-Business Suite owners with April 2026 CPU context.
• P1: Assign IBM Aspera, RabbitMQ MQTT, and go-git checks to managed file transfer, broker, and developer-platform owners.
• P1: Inventory radare2-mcp, SmarterMail, and Zabbix exposure or permission scope, then patch affected versions.
• P1: Continue IronWorm/Miasma searches across lockfiles, caches, developer endpoints, CI logs, and repository interactions.
• P2: Keep Cisco SD-WAN, SolarWinds Serv-U, Everest Forms Pro, and ASUS Business Manager Service in exposure-review mode until official mapping or fixed-version evidence is confirmed.
• P2: Build legal-sector and Chinese APT detection watch packs from the cited reports without expanding victim-scope claims.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 07 June 2026.

Arista EOS CVE-2025-5088 - EU Advisory Burst Widens the Owner Assignment Queue

Finding 1: Arista EOS CVE-2025-5088 and CVE-2024-27889 clusters need network-owner assignment

Confidence: Low

Two Arista EOS advisory clusters entered today's intelligence from BSI/CERT-Bund. WID-SEC-2025-2639 covers CVE-2025-5088, CVE-2025-5089, CVE-2025-5090, and CVE-2025-8873. A separate advisory, WID-SEC-2024-0489, covers CVE-2024-27889 and CVE-2024-27892, and the current brief describes code-execution impact for that second cluster.

Keep the two queues separate. They point to the same product family, but the advisory IDs and CVE sets differ. Network teams should map EOS exposure, confirm versions, and record vendor-supported update or mitigation status before any severity language is raised.

Action: Ask network owners for EOS inventory, exposed management or routing-plane paths, affected version status, and planned update or mitigation evidence.

Sources: BSI/CERT-Bund advisories WID-SEC-2025-2639 and WID-SEC-2024-0489.

Finding 2: Keycloak, BigBlueButton, FRRouting, HTTP/2, and MISP expand the EU patch-routing queue

Confidence: Low

The BSI/CERT-Bund feed also added Keycloak CVE-2026-7500, BigBlueButton CVE-2026-46355, FRRouting CVE-2026-37460, HTTP/2 CVE-2026-49975, and MISP CVE-2026-10854. The common action is not a generic patch blast. Each item belongs to a different operational owner: IAM, collaboration, network availability, edge services, and security operations.

Keycloak deserves an IAM-first route, especially for internet-facing or administrator realms. BigBlueButton should go to collaboration and education-platform owners. FRRouting belongs with network availability teams. HTTP/2 needs edge-service mapping across reverse proxies and application platforms. MISP should not lag just because it is defensive infrastructure.

Action: Split the queue by owner and ask each team for asset match, affected version, patch availability, and exposure status.

Sources: BSI/CERT-Bund advisories WID-SEC-2026-1330, WID-SEC-2026-1804, WID-SEC-2026-1795, WID-SEC-2026-1791, and WID-SEC-2026-1800.

Finding 3: DbGate, Twig, TinyMCE, and Bugsink create a developer-platform patch queue

Confidence: Low

GitHub Security Advisories added several application and dependency items. DbGate includes CVE-2026-47668, CVE-2026-47669, CVE-2026-47670, and CVE-2026-48017. Twig includes CVE-2026-47732, CVE-2026-24425, and CVE-2026-47730. TinyMCE includes CVE-2026-47759, CVE-2026-47760, CVE-2026-47761, and CVE-2026-47762. Bugsink includes CVE-2026-47715, CVE-2026-47716, and CVE-2026-47728.

The useful cut is by exposure path. DbGate matters most where self-hosted database-admin tooling is reachable or where JSON Script Runner and archive paths are enabled. Twig should be checked where tenant-controlled templates, CMS plugins, or admin/developer consoles use Symfony or Twig. TinyMCE belongs in rich-text editor workflows that process customer or tenant content. Bugsink needs attention where self-hosted error tracking is used by multiple teams or projects.

Action: Match each advisory cluster against SBOMs, repos, containers, and self-hosted admin tools. Disable risky DbGate script or archive paths until fixed where exposure is confirmed.

Sources: GitHub Security Advisories GHSA-8v3q-9vmx-36vc, GHSA-h535-j5hr-mv56, GHSA-pr2w-4gpj-cpq4, GHSA-2q52-x2ff-qgfr, GHSA-q742-qvgc-gc2f, GHSA-mh5m-5hw4-5c69, GHSA-vx2f-6m6h-9frf, and GHSA-g5vc-q7qc-v939.

Finding 4: Cisco SD-WAN, Everest Forms Pro, and SolarWinds Serv-U are exposure-review triggers, not confirmed escalation items

Confidence: Low

Three exploitation-oriented reports are visible but remain low-confidence in this intelligence. The Register reports a Cisco SD-WAN no-CVE zero-day under attack with no patch in the current report. The Hacker News reports active exploitation of Everest Forms Pro CVE-2026-3300. BleepingComputer reports CISA warning that attackers are exploiting a recently patched SolarWinds Serv-U flaw to crash servers.

All three should be handled carefully. Cisco SD-WAN should trigger a management and control-plane exposure review whilst teams wait for Cisco or CISA advisory mapping. Everest Forms Pro should trigger a WordPress estate check, but P0 escalation should wait for stronger vendor, CISA, or Wordfence corroboration. SolarWinds Serv-U should trigger an exposure and patch-status review for internet-facing file-transfer services, without broadening the claim beyond reported crash exploitation.

Action: Identify internet-facing Cisco SD-WAN management or control-plane assets, check WordPress estates for Everest Forms Pro, and confirm whether SolarWinds Serv-U instances are exposed and patched. Keep all three in watch status until higher-authority corroboration appears.

Sources: The Register Cisco SD-WAN report, The Hacker News Everest Forms Pro CVE-2026-3300 report, and BleepingComputer SolarWinds Serv-U/CISA warning report.

Finding 5: Mandiant law-firm campaign and Hola Browser compromise need targeted monitoring and endpoint hygiene

Confidence: Low

Mandiant reports a targeted campaign against US law firms involving UNC3753, Luna Moth, Chatty Spider, or Silent Ransom Group naming in the current intelligence. The brief keeps this LOW / UNVERIFIED for this corpus, so the immediate value is to extract indicators and TTPs into a legal-sector watch pack before proposing detection engineering.

BleepingComputer also reports Hola Browser for Windows was compromised to deliver a cryptominer. That is an endpoint-hygiene item. Teams should inventory managed endpoints for Hola Browser for Windows, remove unapproved installs, and validate hashes or install source where an exception exists.

Action: Build a legal-sector watch pack from the Mandiant report and run an endpoint inventory query for Hola Browser for Windows.

Sources: Google Cloud Mandiant law-firm campaign report and BleepingComputer Hola Browser for Windows compromise report.

Finding 6: UPDATE: IronWorm/Miasma npm cluster expands to 50+ poisoned packages

Confidence: Medium

Previously covered 05 June 2026; today's delta: the scope expanded from the prior 36-package IronWorm item to a broader 50+ package IronWorm/Miasma npm cluster.

This is the one material update in today's intelligence. BleepingComputer and The Hacker News reporting now put the cluster above 50 poisoned npm packages and add the Miasma variant to the same supply-chain queue.

Treat this as package exposure work, not a blanket compromise claim. Search lockfiles, npm caches, developer endpoints, and CI build logs as package lists become available. Rotate tokens where malicious package installation is confirmed. Avoid unnecessary token churn where there is no install evidence.

Action: Send the updated IronWorm/Miasma package list to application security, developer platform, and CI owners. Ask for evidence of matching installs, cache hits, and token exposure before declaring incident scope.

Sources: BleepingComputer IronWorm npm report and The Hacker News IronWorm/Miasma report.

Why This Matters

Today's brief is a routing problem. The signal is spread across network infrastructure, IAM, collaboration platforms, developer dependencies, edge services, legal-sector monitoring, and endpoint hygiene. Most items are single-source or feed-level, so accuracy depends on exposure proof.

The safest order is simple: send Arista EOS and the wider BSI/CERT-Bund queue to the correct owners, run SBOM and dependency checks for the GitHub advisory clusters, keep low-corroboration exploitation reports in watch status, and treat IronWorm/Miasma as a scope expansion that needs package-level evidence.

• Recommended Actions
• P1: Route Arista EOS WID-SEC-2025-2639 and WID-SEC-2024-0489 to network owners for asset, version, exposure, and patch-status checks.
• P1: Assign Keycloak, BigBlueButton, FRRouting, HTTP/2, and MISP advisories to IAM, collaboration, network, edge-service, and security-ops owners.
• P1: Search lockfiles, npm caches, developer endpoints, and CI logs for IronWorm/Miasma package indicators as validated lists become available.
• P2: Match DbGate, Twig, TinyMCE, and Bugsink advisories against SBOMs, repositories, containers, and self-hosted services.
• P2: Treat Cisco SD-WAN and Everest Forms Pro as exposure-review items until stronger vendor or government corroboration appears.
• P2: Build a law-firm campaign watch pack and remove unapproved Hola Browser for Windows installs from managed endpoints.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 06 June 2026.

Cisco Unified CM CVE-2026-20230 - WebDialer Exposure Leads Today's Patch Queue

Finding 1: Cisco Unified CM / CM SME CVE-2026-20230 - WebDialer SSRF can become root

Confidence: High

NCSC-NL and CERT-FR both reference Cisco Unified CM / CM SME CVE-2026-20230. Today's intelligence treats it as the lead because the affected environment is clear: Unified CM/CM SME 14 and 15, with WebDialer enablement and patch or COP status needing confirmation.

This is not a generic collaboration-platform reminder. If WebDialer is enabled, the exposure check matters first. Teams should confirm whether the feature is in use, whether the relevant Cisco fix has been applied, and whether externally reachable or high-trust voice-management paths need additional review.

Action: Ask collaboration and voice-platform owners for a same-day answer on Unified CM/CM SME version, WebDialer status, patch/COP state, and exposure.

Sources: NCSC-NL advisory NCSC-2026-0174 and CERT-FR advisory CERTFR-2026-AVI-0689.

Finding 2: Microsoft cloud advisories need named tenant and service owners

Confidence: Low

MSRC lists new advisories for Microsoft M365 Copilot CVE-2026-45497, Azure HorizonDB CVE-2026-48567, and Exchange Online CVE-2026-48579. The evidence in today's intelligence is Tier-0 single-source, so the right action is owner routing and applicability confirmation, not incident language.

The common failure mode is assuming Microsoft-owned services need no internal tracking. That misses the real work: finding the tenant owner, confirming whether the service is enabled or in scope, and recording remediation or mitigation evidence from the relevant Microsoft channel.

Action: Route each CVE to the right Microsoft 365, Azure data-platform, or Exchange Online owner. Track applicability, remediation state, and any change in MSRC detail.

Sources: Microsoft MSRC entries for CVE-2026-45497, CVE-2026-48567, and CVE-2026-48579.

Finding 3: Axios, Matrix, @cap-js/openapi, and IronWorm create a package-integrity queue

Confidence: Medium

The software supply-chain queue is broad. Axios has Proxy-Authorization credential-leakage advisories for CVE-2026-44486 and CVE-2026-44487. Matrix Rust SDK has sender-binding concerns under CVE-2026-45056 and GHSA-wfq4-36m3-9g42. GitHub Advisories also list a malicious @cap-js/openapi package compromise under GHSA-jpvj-wpmj-h7rv.

IronWorm is the most visible package-compromise item in the set. BleepingComputer reports IronWorm malware affecting 36 npm packages, with Unit 42 providing wider npm supply-chain context. Exact package matching still matters before broad escalation, so this should start with lockfiles, SBOMs, package registries, CI artefacts, and developer endpoint telemetry.

Action: Search lockfiles, SBOMs, npm caches, CI artefacts, and registry telemetry for Axios, Matrix Rust SDK, @cap-js/openapi, and IronWorm indicators. Rotate proxy credentials if Axios exposure evidence exists.

Sources: GitHub Advisories for Axios, Matrix Rust SDK, and @cap-js/openapi; BleepingComputer IronWorm reporting; Unit 42 npm supply-chain research.

Finding 4: OT owners should assess B&R, NAVTOR, and Hitachi Energy without assuming exploitation

Confidence: Low

CISA ICS advisories list three operational-technology items: B&R PPT30 Operating System CVE-2025-11482, NAVTOR NavBox CVE-2026-21404, and Hitachi Energy MACH HiDraw CVE-2026-7310. Today's intelligence does not state confirmed exploitation for these items.

That distinction matters. OT teams still need to act, but the first step is applicability: whether the product exists, whether the affected feature or version is present, and whether patching can be scheduled safely inside operational constraints. For B&R, OPC-UA enablement is part of the decision. For NAVTOR, SOAP exposure and auto-update status matter. For Hitachi Energy, engineering-workstation access controls are part of the review.

Action: Send B&R, NAVTOR, and Hitachi Energy checks to OT and maritime or engineering-system owners. Ask for version, feature exposure, network isolation, and patch plan.

Sources: CISA ICS advisories ICSA-26-155-03, ICSA-26-155-01, and ICSA-26-155-05.

Finding 5: Synology, NetApp, Shopware, OpenMeter, and MCP-for-Stata need exposure-led triage

Confidence: Low

Several new advisories are actionable only after product matching. CERT-FR lists Synology Chat Server CVEs CVE-2026-9491, CVE-2026-40541, and CVE-2026-9548, plus NetApp Active IQ Config Advisor / OneCollect CVE-2026-22055 and CVE-2026-22054. GitHub Advisories add OpenMeter CVE-2026-8462, MCP-for-Stata CVE-2026-47708, Shopware CVE-2026-48009, and Shopware CVE-2026-48013.

Treat this as an exposure queue. Collaboration-heavy Synology deployments, storage-administration tooling, tenant-facing OpenMeter paths, research analytics environments, and Shopware admin or media endpoints all need different owners. One generic patch ticket will lose the detail.

Action: Split the queue by owner. Prioritise externally reachable Synology or Shopware systems, production storage-admin tooling, and environments where untrusted tenant, user, or filename input reaches the affected component.

Sources: CERT-FR advisories CERTFR-2026-AVI-0687 and CERTFR-2026-AVI-0686; GitHub Advisories for OpenMeter, MCP-for-Stata, and Shopware.

Finding 6: ASUS Business Manager Service and Microsoft Edge require endpoint-owner routing

Confidence: Low

Zero Day Initiative published advisories for ASUS Business Manager Service CVE-2026-7480 and Microsoft Edge CVE-2026-45492. The current evidence is single-source in today's intelligence, but both are close enough to endpoint management to justify owner checks.

The practical question is population. ASUS Business Manager Service is relevant only where it is installed on managed endpoints. Microsoft Edge is broader, but remediation still depends on browser update channels and the users most exposed to risky browsing or untrusted web content.

Action: Inventory ASUS Business Manager Service, route vendor remediation to endpoint owners, and confirm Edge update-channel coverage for high-risk browsing populations.

Sources: Zero Day Initiative advisories ZDI-26-328 and ZDI-26-329.

• Updates to ongoing stories
• Confidence: Medium
• Android CVE-2025-48595: Today's intelligence records active exploitation as a material update. Managed Android fleets should keep June patch tracking open and prioritise devices with elevated user risk.
• WinRAR CVE-2025-8088: The update is attribution to Gamaredon activity, not a new vulnerability. Keep WinRAR remediation and archive-lure detections active for Ukraine-facing or government-adjacent teams.
• Kirki WordPress CVE-2026-8206: The update is a severity change. WordPress owners should verify Kirki usage and review privileged-account changes.

Why This Matters

Today's brief is less about one confirmed compromise pattern and more about clean routing. Cisco leads because the evidence is stronger and the affected condition is specific. Most other items require asset, feature, tenant, package, or endpoint confirmation before severity can be raised.

The order is clear: check Cisco Unified CM/CM SME first, route Microsoft cloud advisories to named owners, run package-integrity searches, and ask OT teams for applicability without implying confirmed exploitation.

• Recommended Actions
• P1: Confirm Cisco Unified CM/CM SME 14/15 exposure, WebDialer status, and patch/COP state for CVE-2026-20230.
• P1: Assign Microsoft M365 Copilot, Azure HorizonDB, and Exchange Online CVEs to tenant and service owners.
• P2: Search SBOMs, lockfiles, npm caches, CI artefacts, and registry telemetry for Axios, Matrix Rust SDK, @cap-js/openapi, and IronWorm indicators.
• P2: Ask OT owners to assess B&R PPT30, NAVTOR NavBox, and Hitachi Energy MACH HiDraw applicability and patch plans.
• P2: Split Synology, NetApp, Shopware, OpenMeter, and MCP-for-Stata checks by product owner and exposure path.
• P2: Inventory ASUS Business Manager Service and confirm Microsoft Edge update-channel coverage.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 05 June 2026.

Mirasvit CVE-2026-45247 Enters CISA KEV as PAN-OS and TA4922 Pressure Builds

Finding 1: Mirasvit Full Page Cache Warmer CVE-2026-45247 enters CISA KEV

Confidence: High

CISA's Known Exploited Vulnerabilities catalogue lists CVE-2026-45247 in Mirasvit Full Page Cache Warmer. Today's intelligence treats this as the lead because the exploitation signal is government-confirmed, not merely feed-level reporting.

The practical question is exposure. Teams running Magento or related e-commerce estates should confirm whether the Mirasvit Full Page Cache Warmer extension is present, check patch or removal options, and review logs for suspicious activity where the extension is deployed.

Action: Make this a P0 applicability check for Magento and e-commerce owners. If the extension is present, move from asset confirmation to remediation and exploitation review the same day.

Source: CISA Known Exploited Vulnerabilities catalogue, CVE-2026-45247.

Finding 2: PAN-OS GlobalProtect CVE-2026-0257 is CISA KEV-listed and back in incident-routing scope

Confidence: High

PAN-OS GlobalProtect CVE-2026-0257 is a Palo Alto Networks authentication bypass listed in CISA's Known Exploited Vulnerabilities catalogue since 29 May 2026, so exploitation is government-confirmed rather than feed-level. Today's intelligence records it as an update with active-exploitation materiality, and The Register reports that exposed Palo Alto VPN environments have moved from advisory tracking into active-exploitation concern.

This should not be treated as generic perimeter patching. Exposed GlobalProtect gateways deserve a separate owner check, with patch or mitigation state tied to incident-response visibility. If a gateway remains exposed and unpatched, the question is no longer only “when is the maintenance window?” It is also “what evidence would show compromise?”

Action: Re-check exposed GlobalProtect gateways, confirm patch or mitigation status, and route unpatched exposure into incident-response review.

Sources: CISA Known Exploited Vulnerabilities catalogue, CVE-2026-0257 (added 29 May 2026); The Register, PAN-OS GlobalProtect active-exploitation reporting.

Finding 3: TA4922 Atlas RAT targeting reaches Britain and Germany

Confidence: Medium

Proofpoint reports that TA4922, a suspected Chinese-speaking cybercrime group, has expanded activity into Europe, including the United Kingdom and Germany. The reporting names Atlas RAT, RomulusLoader, SilentRunLoader, and ValleyRAT, with lures using business, HR, tax, payroll, and invoice themes.

The most useful action is hunting, not general awareness. Today's intelligence includes hashes and infrastructure from the reporting, including a648db354820ea4d02940cb1702b35974513b7aae83f6dffaacaac4ba31f9295, 584a9448dda46bd590d7a2f86228100d2ae6e0d6d990c1a4459ed5ee28e07ae8, 206.238.115.58, 154.211.86.110, 43.156.77.97, and 103.214.172.33.

Action: Hunt those indicators across mail, EDR, proxy, DNS, and firewall telemetry. Pay particular attention to GoFile ZIP lures, DLL sideloading, HR-themed emails, and Germany or UK tax-themed social engineering.

Sources: Proofpoint TA4922 research and BleepingComputer European Atlas RAT reporting.

Finding 4: BSI advisories create a QEMU, automation, security-ops, CMS, and delivery-tool queue

Confidence: Low/Unverified

BSI published or surfaced multiple advisories relevant to QEMU/qemu-kvm, Red Hat Ansible Automation Platform, MISP, Progress Sitefinity, Go, Devolutions Server, Froxlor, and Octopus Deploy. The QEMU items include CVE-2026-3195, CVE-2026-3196, CVE-2025-14876, CVE-2026-2243, and CVE-2026-3842.

The risk is not that every item deserves the same urgency. The risk is that virtualisation, automation, threat-intelligence, CMS, privileged-access, hosting-control-panel, and CI/CD owners all assume someone else has the ticket. This is a routing problem first.

Action: Build a same-day owner table. Send QEMU to virtualisation and appliance owners, Ansible to automation owners, MISP to security operations, Sitefinity and Froxlor to web teams, Devolutions to privileged-access owners, and Octopus Deploy to CI/CD owners.

Sources: BSI WID-SEC advisories WID-SEC-2026-0566, WID-SEC-2025-2884, WID-SEC-2026-0464, WID-SEC-2026-1083, WID-SEC-2025-2432, WID-SEC-2026-1778, WID-SEC-2026-1783, WID-SEC-2026-1776, WID-SEC-2026-1781, WID-SEC-2026-1782, and WID-SEC-2026-1784.

Finding 5: Developer and research-platform dependencies need SBOM matching before escalation

Confidence: Low/Unverified

GitHub Advisories list clusters affecting Jupyter Enterprise Gateway, Docling, browserstack-runner, React Router, AIOHTTP, and quic-go. The most sensitive paths are notebook gateways, Kubernetes-backed research platforms, document and archive parsing, CI runners, public React Router apps, Python services, and Go HTTP/3 endpoints.

This is too broad for manual ticket guessing. The better route is SBOM or dependency matching against production services, CI runners, developer workstations, research platforms, and container images. Escalate only where a vulnerable package is present in a relevant execution path.

Action: Ask platform, application, and developer-experience owners to run dependency matching for the named packages. Prioritise browserstack-runner, Jupyter Enterprise Gateway, and Docling where untrusted input or CI execution is involved.

Sources: GitHub Advisories for Jupyter Enterprise Gateway, Docling, browserstack-runner, React Router, AIOHTTP, and quic-go.

Finding 6: Acer Wave 7 and Gemini notification hijack remain low-confidence but actionable hygiene items

Confidence: Low/Unverified

Acer Wave 7 router zero-day reporting is included as a new item, but the evidence remains incomplete pending fuller vendor and CVE detail. Treat it as an exposure-management item: know whether Wave 7 routers exist, reduce external exposure, and track firmware availability.

The Gemini notification hijack path is also included as a low-confidence hygiene item. The Hacker News reports that Google patched the issue server-side. The residual control question is whether Android fleets grant broad notification access or connected-app permissions to AI assistant workflows without a clear business reason.

Action: Inventory Acer Wave 7 routers and restrict exposure where possible. Review Gemini notification access and Android connected-app permissions, especially on managed devices used by privileged or sensitive users.

Sources: BleepingComputer Acer Wave 7 reporting and The Hacker News Gemini notification hijack reporting.

• Updates to ongoing stories
• Confidence: Low/Unverified
• WinRAR CVE-2025-8088 (CISA KEV): This path-traversal flaw is a known-exploited vulnerability, listed in CISA's Known Exploited Vulnerabilities catalogue since 12 August 2025. Today's update is attribution, not a new vulnerability: The Hacker News reports Gamaredon-linked use against Ukraine. Keep WinRAR remediation and archive-lure detection active for Ukraine-facing, government-adjacent, and Europe-facing teams.
• Android CVE-2025-48595 (CISA KEV): This Android Framework integer-overflow flaw entered CISA's Known Exploited Vulnerabilities catalogue on 2 June 2026 and is known-exploited. Yesterday's bundle already covered managed Android patch compliance, so it is not a fresh lead today, but keep patch tracking open and prioritise managed fleets given the confirmed exploitation.
• Kirki CVE-2026-8206 and WP Maps Pro: WordPress administrator-account abuse remains important. Continue plugin checks and administrator-account review, but today's brief treats those stories as repeated against recent publication state.
• VS Code token theft: Exploit-code reporting remains watchlist-only pending stronger advisory or patch anchoring. Developer teams should still tighten GitHub token hygiene and review unusual authentication activity.

Why This Matters

Today's brief is a triage exercise. Four items carry a government-confirmed exploitation signal through CISA KEV: Mirasvit CVE-2026-45247, PAN-OS CVE-2026-0257, WinRAR CVE-2025-8088, and Android CVE-2025-48595. Mirasvit is the lead because it is the newest KEV addition; the others are already-tracked exploited items. Several non-KEV findings need fast owner confirmation because they sit on exposed gateways, developer tooling, e-commerce sites, or security operations systems.

The right response is not to panic-patch everything. It is to rank by confidence, exposure, and owner. Start with Mirasvit CVE-2026-45247, re-check PAN-OS GlobalProtect, hunt TA4922 indicators, and then route the lower-confidence BSI, Ubuntu, MSRC, and GHSA items to the right technical teams.

• Recommended Actions
• P0: Check Mirasvit Full Page Cache Warmer CVE-2026-45247 exposure in Magento and e-commerce estates, then remediate and review logs where present.
• P1: Confirm PAN-OS GlobalProtect CVE-2026-0257 (CISA KEV) patch or mitigation status for exposed gateways.
• P1: Hunt TA4922 Atlas RAT indicators across mail, EDR, proxy, DNS, and firewall telemetry.
• P1: Route the BSI advisory queue to named virtualisation, automation, security-ops, CMS, privileged-access, hosting, and CI/CD owners.
• P2: Run SBOM and dependency matching for Jupyter Enterprise Gateway, Docling, browserstack-runner, React Router, AIOHTTP, and quic-go.
• P2: Track Acer Wave 7 firmware detail and review Gemini notification and connected-app permissions on Android fleets.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 04 June 2026.

Android CVE-2025-48595 and CISA KEV CVE-2022-0492 Lead a Patch-Routing Day

Finding 1: Android CVE-2025-48595 (CISA KEV) active-exploitation patch compliance

Confidence: Low/Unverified

The 03 June intelligence sweep flags Android CVE-2025-48595 as a managed-mobile patch-compliance item. SecurityWeek reports that Google's Android update patches CVE-2025-48595 and 123 other vulnerabilities, with CVE-2025-48595 described as exploited in limited, targeted attacks. CVE-2025-48595 is also listed on CISA's Known Exploited Vulnerabilities catalogue (2026-06-02 release), which corroborates the exploitation signal beyond the single SecurityWeek source.

The call is simple. This is not a broad mobile panic item. It is a patch-status question for managed Android fleets. Teams should confirm whether exposed or sensitive-user devices have received the June Android security update, then record exceptions by device owner and business function.

Action: Treat managed Android patch state as P1 for the next seven days. Prioritise devices used by administrators, executives, incident responders, and users in higher-risk roles. Where patching depends on OEM or carrier release timing, document the blocked population and keep Samsung/Android remediation mapping current through NCSC-NL NCSC-2026-0173.

Source: SecurityWeek, plus NCSC-NL NCSC-2026-0173.

Finding 2: CISA KEV adds Linux kernel/container CVE-2022-0492

Confidence: Low/Unverified

The intelligence sweep surfaces CISA Known Exploited Vulnerabilities entry CVE-2022-0492 to today's brief. It is an existing KEV listing rather than a new addition, so treat it as standing exposure to confirm. The brief routes this to legacy kernels, Kubernetes nodes, privileged containers, and cgroup exposure checks.

The age of the CVE matters less than the KEV signal. If a legacy Linux estate, old container host, or privileged workload still carries exposure, this becomes an asset-discovery and exception-management problem. The highest-risk systems are those where container isolation assumptions are part of the control model.

Action: Check kernel versions and container runtime exposure on Kubernetes nodes, CI workers, shared Linux hosts, and any environment using privileged containers. Confirm whether remediation is already covered by current distribution baselines. Escalate exceptions where internet-facing services, shared tenancy, or administrative workloads are present.

Source: CISA KEV catalogue.

Finding 3: EU Tier-0 advisories create an owner assignment queue

Confidence: Low/Unverified

The largest change is volume. The 03 June intelligence sweep contains new Tier-0 or national-advisory items for IBM WebSphere, Microsoft SharePoint, Mozilla Firefox for iOS, Google Android and Samsung Mobile remediation, Apache Kafka, Ivanti Neurons for ITSM, OpenSC, Nextcloud, and Red Hat OpenShift. These items do not all deserve the same urgency, but each needs an accountable owner.

The risk is queue failure. Middleware, collaboration, ITSM, smart-card, OpenShift, Kafka, and mobile-browser owners may sit in different teams. A daily advisory spike can turn into missed routing if everything lands in one generic patch inbox.

Action: Build a same-day routing table. Assign WebSphere to Java middleware owners, SharePoint and Nextcloud to collaboration owners, Kafka to platform/data-stream owners, Ivanti to ITSM owners, OpenSC to endpoint and privileged-admin endpoint owners, and OpenShift to platform owners. Ask each owner for exposure, patch availability, and planned remediation date.

Sources: BSI WID-SEC-2026-1762, WID-SEC-2026-1764, WID-SEC-2026-1763, WID-SEC-2026-1765, WID-SEC-2026-1767, WID-SEC-2026-1769, WID-SEC-2026-1773, WID-SEC-2026-1768, and NCSC-NL NCSC-2026-0173.

Finding 4: Linux, desktop, and package baseline items need hygiene without over-escalation

Confidence: Low/Unverified

The intelligence sweep lists new package and platform items for libsoup CVE-2026-6324, X.Org/Xwayland CVE-2025-26597, glib-networking CVE-2026-10028, Ubuntu Tomcat Connectors USN-8369-1 / CVE-2024-46544, Ubuntu age USN-8372-1 / CVE-2024-56327, Ubuntu libeconf USN-8368-1 / CVE-2023-22652, Ubuntu EditorConfig USN-8238-2 / CVE-2026-40489, and an OpenSSH rowhammer-related NVD entry, CVE-2023-51767.

This set is best handled through baseline engineering, not incident response. The practical question is where these packages appear in base images, developer workstations, VDI, kiosk builds, CI images, Linux clients, appliances, and Java web front ends.

Action: Fold these into normal package and image rebuild workflows. Prioritise exposed services and shared desktop contexts ahead of low-actionability items. Keep OpenSSH CVE-2023-51767 on watch until distribution or vendor clarification gives a clearer remediation path.

Sources: MSRC, NVD, and Ubuntu notices.

Finding 5: Kirki WordPress CVE-2026-8206 adds a second admin-account risk

Confidence: Low/Unverified

The intelligence sweep promotes a new BleepingComputer report on CVE-2026-8206, a Kirki WordPress flaw reported as exploited to hijack administrator accounts. This is separate from yesterday's WP Maps Pro CVE-2026-8732 story, which was already published and is not repeated as today's lead.

The common risk is administrator-account abuse in WordPress estates. Even where a site is patched, unexpected administrator creation is a high-value detection point because it can persist after the vulnerable component is removed.

Action: Check Kirki usage, plugin versions, and recent administrator-account changes. Keep the WP Maps Pro remediation from 02 June open until admin-account review is complete across affected WordPress sites.

Source: BleepingComputer.

• Updates to ongoing stories
• Confidence: Low/Unverified
• Oracle WebLogic exploited-patch reporting: The intelligence sweep marks this as an update with patch-released materiality. Verify against CISA KEV and Oracle alerts before raising customer-facing urgency.
• Gamaredon and WinRAR CVE-2025-8088: The intelligence sweep records attribution change, with GammaWorm and GammaSteel delivery against Ukraine. CVE-2025-8088 is on CISA's KEV catalogue, so treat WinRAR archive-handling exposure as actively exploited. Keep Europe-facing phishing and archive-handling controls in scope.
• praisonai-platform CVE-2026-47411 / GHSA-rcmc-q9rj-4wmq: route as low-priority dependency hygiene.
• Palo Alto VPN / PAN-OS CVE-2026-0257 context: CVE-2026-0257 is on CISA's KEV catalogue, and active-exploitation coverage was re-promoted by the sweep's sidecar. This remains a short update because Palo Alto exploitation was previously covered.
• Red Hat npm / Miasma and WP Maps Pro CVE-2026-8732: both remain relevant from yesterday's bundle. Today's evidence changes their status, not the core recommended actions.

Why This Matters

The day is less about one headline exploit and more about avoiding routing failure. Today's brief shows a wide set of eligible findings that would be easy to mishandle if they were all treated as the same patch ticket.

The right response is owner-driven: confirm mobile patch state, verify Linux/container exposure, route EU advisory items to named service owners, and keep WordPress administrator-account checks active. Most findings are still Low/Unverified. Move owners, but do not imply confirmed compromise across the estate.

• Recommended Actions
• P1: Confirm Android CVE-2025-48595 patch status for managed devices and record OEM/carrier blockers.
• P1: Check Linux and Kubernetes exposure for CVE-2022-0492, especially legacy kernels, privileged containers, cgroups, CI workers, and shared hosts.
• P1: Route the EU advisory cluster to named middleware, collaboration, ITSM, OpenShift, Kafka, smart-card, and mobile owners.
• P2: Fold libsoup, X.Org/Xwayland, glib-networking, Ubuntu package notices, and OpenSSH CVE-2023-51767 into package/image baselines.
• P2: Check Kirki and WP Maps Pro exposure, then audit WordPress administrator-account changes.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 03 June 2026.

Actively Exploited WordPress Admin-Takeover Flaw Leads a Supply-Chain-Heavy Day

Finding 1: WP Maps Pro flaw actively exploited to create WordPress admin accounts (CVE-2026-8732)

Confidence: Medium-High

The WP Maps Pro plugin for WordPress contains a privilege-escalation flaw, tracked as CVE-2026-8732, in all versions up to and including 6.1.0. The wpgmptempaccessajax AJAX action is registered without an adequate capability check, which lets an attacker create a new administrator account and take over the site. The vulnerability is recorded in the NVD (published 2026-05-29), and The Hacker News reports it is being actively exploited.

This is the clearest action item today. Administrator-account creation gives an attacker full control of the affected site, including content, user data, and any connected systems.

Action: Update WP Maps Pro past 6.1.0 immediately on any WordPress estate that uses it. Audit the WordPress user list for unexpected administrator accounts created recently, and review access logs for calls to the wpgmptempaccessajax action. Where you cannot patch at once, disable the plugin until you can.

Source: https://thehackernews.com/2026/06/critical-wp-maps-pro-flaw-actively.html

Finding 2: Credential-stealing npm worm compromises Red Hat packages (Miasma)

Confidence: Medium

Two reporting sources describe a supply-chain compromise, named Miasma, in which npm packages associated with Red Hat were altered to steal developer credentials. The reporting frames it as a self-propagating, credential-stealing worm in the npm registry rather than a single tampered package.

The practical risk is to developer workstations and CI runners, where registry tokens, source-code access, and other secrets often sit in the same context. A credential-stealing package that lands on a build runner can reach well beyond the one machine.

Action: Check npm install history, package-lock files, and CI logs for the affected Red Hat-associated packages. Rotate npm and registry credentials that may have been reachable from an affected developer or CI environment, and review recent registry activity for unexpected publishes or token use.

Sources: https://thehackernews.com/2026/06/miasma-supply-chain-attack-compromises.html and https://www.bleepingcomputer.com/news/security/red-hat-npm-packages-compromised-to-steal-developer-credentials/

Finding 3: OpenAI Codex authentication tokens reportedly stolen via codexui-android@0.1.82 [single-source]

Confidence: Low / Unverified

A single source reports that the npm package codexui-android, version 0.1.82, targets OpenAI Codex authentication tokens. The report does not confirm victim count, exploitation telemetry, or registry takedown status, so treat it as a containment-oriented hygiene check rather than a confirmed incident. It fits the same developer-token supply-chain theme as the Miasma reporting above.

Action: Search package-lock files, npm caches, CI logs, and developer workstations for codexui-android, especially version 0.1.82. Rotate OpenAI or Codex tokens where the package appears in a trusted developer or CI environment.

Source: https://thehackernews.com/2026/06/openai-codex-authentication-tokens.html

On Watch (active-exploitation reports awaiting firm identifiers)

Confidence: Medium

• These two carry active-exploitation reporting but lack a confirmed CVE or advisory identifier at the time of writing. They are on watch, not dismissed: verify your own exposure now and treat a confirmed identifier as a trigger to act.
• Windows Netlogon remote code execution, reported exploited in attacks. If confirmed against your domain controllers this would be high-impact. Review domain-controller patch levels and watch for a Microsoft advisory or CVE to anchor remediation. Source: https://www.bleepingcomputer.com/news/microsoft/critical-windows-netlogon-remote-code-execution-flaw-now-exploited-in-attacks/
• A Linux kernel local privilege-escalation flaw described as 19 years old, reported to grant root. Identify the affected subsystem and distribution advisories before scheduling kernel updates. Source: https://www.securityweek.com/19-year-old-linux-kernel-vulnerability-exposes-systems-to-root-access/

Already Covered (no repeat today)

Confidence: High

Palo Alto PAN-OS exploitation under CVE-2026-0257 featured in our 31 May report and carries no materially new development today, so it is not repeated here. Continue any remediation already underway from that advisory.

Why This Matters

Three of today's items sit in the software-supply-chain and developer-tooling layer: a WordPress plugin, npm registry packages, and an AI-tool token. The common thread is that a single compromised component can grant broad access, whether that is administrator control of a website or a credential lifted from a build runner. The defensive moves are the same in each case: know where the component is in use, patch or remove it, and rotate any credential that was reachable from it.

• Recommended Actions
• P1: Update WP Maps Pro past version 6.1.0 and audit WordPress sites for unexpected administrator accounts.
• P1: Hunt for the Miasma-affected Red Hat npm packages and codexui-android@0.1.82 across npm caches, lockfiles, CI logs, and developer endpoints; rotate exposed registry and OpenAI/Codex tokens.
• P2: Verify Windows domain-controller and Linux kernel exposure now; act on the Netlogon and Linux kernel reports as soon as a CVE or vendor advisory anchors them.
• P3: No further action needed on Palo Alto CVE-2026-0257 beyond remediation already in progress from the 31 May advisory.

All findings grounded in a13e intelligence sweeps and verified against primary sources through 06:30 UTC on 02 June 2026.

Gogs No-CVE RCE Report - Exposure Review Whilst PAN-OS CVE-2026-0257 KEV/Exploitation Context Moves to P1

Finding: Gogs no-CVE remote-code-execution report [UNCONFIRMED, single-source]

Confidence: Low/Unverified

Source: SecurityWeek reporting in the 31 May source packet. SecurityWeek reports a Gogs zero-day exposing servers to remote code execution. The source packet records this as the only NEW finding eligible for publication, but it does not include a CVE, maintainer patch URL, IOC set or named-victim evidence.

That matters because the right response is exposure discovery, not incident escalation. Teams should identify internet-facing Gogs instances, restrict access where possible and review repository or administrative logs for unusual activity. Stronger language should wait for maintainer guidance, a CVE, a patch, IOCs or confirmed victim evidence.

Update: Palo Alto Networks CVE-2026-0257 KEV/exploitation context confirmed

Confidence: Medium

Source: NCSC-NL advisory, Palo Alto Networks advisory and Rapid7 exploitation reporting in the 31 May source packet. Previously tracked PAN-OS and Prisma Access exposure is now back in the P1 edge-VPN review queue because CVE-2026-0257 is present in broader Known Exploited/KEV tracking, and NCSC-NL cites Rapid7 observed exploitation plus public proof-of-concept availability. This is not being treated as a new KEV addition in today's KEVNEW list.

This is the clearest operational update in today's evidence. Owners should verify PAN-OS and Prisma Access patch state, review certificate reuse and authentication-override cookie configuration, and check Rapid7 IOC guidance where an affected portal or gateway was exposed.

Update: Admidio CVE-2026-47233 patched in 5.0.10 [UNCONFIRMED, single-source]

Confidence: Low/Unverified

Source: GitHub Advisory Database, GHSA-xw54-c3mx-9pm3. The source packet records a new patched-version anchor for CVE-2026-47233: Admidio 5.0.10. The advisory describes logged-in inventory field deletion through mode=fielddelete, with affected versions at or below 5.0.9.

Treat this as a targeted owner assignment item. Check Admidio deployments, especially internet-facing or multi-admin/community instances, and upgrade to 5.0.10 or later where the software is present.

Update: praisonai-platform CVE-2026-47416 patched in 0.1.4 [UNCONFIRMED, single-source]

Confidence: Low/Unverified

Source: GitHub Advisory Database, GHSA-c2m8-4gcg-v22g. The source packet records a new patched-version anchor for CVE-2026-47416: praisonai-platform 0.1.4. The issue is described as member-to-owner workspace privilege escalation affecting versions up to 0.1.2.

This is a patch-validation task. If PraisonAI or praisonai-platform workspaces are present in labs, demos, customer proof-of-concepts or internal tooling, pin to 0.1.4 or later and review recent workspace-owner membership changes.

Why This Matters

Today's signal is mixed. The only NEW item, Gogs, is not mature enough for exploit claims. The strongest action sits in an UPDATED item: Palo Alto Networks CVE-2026-0257 now has KEV-aligned exploitation context and should outrank lower-confidence software advisory checks.

The two patch updates are still useful. They give owners exact fixed-version targets for praisonai-platform and Admidio, which is the difference between vague awareness and a closeable ticket.

• Recommended Actions
• Treat Palo Alto Networks CVE-2026-0257 as the P1 edge-VPN item: verify patch state, configuration exposure and Rapid7 IOC guidance where exposed; note it is KEV-aligned but not a new KEV_NEW entry today.
• Inventory internet-facing Gogs instances and apply compensating access controls pending maintainer, CVE, patch or IOC detail.
• Upgrade Admidio to 5.0.10 or later where present, prioritising shared or internet-facing deployments.
• Upgrade praisonai-platform to 0.1.4 or later where present, then review workspace-owner membership changes.
• Keep watchlist-only and excluded items out of executive escalation unless future evidence provides a strict material update.

All findings grounded in a13e intelligence sweeps through 04:55 UTC 31 May 2026.