GLOBAL SITUATIONMONITORING
517 published briefsUTCSun, Apr 26 00:18:57
Zero-Day Exploitation
Exploitation of vulnerabilities before a patch is available
2 intelligence briefs← Intelligence Hub
-
Google fixes two Chrome zero-days exploited in the wild affecting Skia and V8
Google has released Chrome security updates to fix two high-severity zero-days, CVE-2026-3909 and CVE-2026-3910, that were exploited in the wild and later added to CISA’s Known Exploited Vulnerabilities catalog.
-
What is CitrixBleed 2 (CVE-2025-5777)?
CitrixBleed 2 (CVE-2025-5777) is a critical information-disclosure vulnerability impacting NetScaler ADC and Gateway systems, allowing unauthorized attackers to bypass MFA, hijack admin sessions, and establish unauthorized VDE sessions. This zero-day was exploited by an unnamed APT group before a patch was released.