SolarWinds Serv-U CVE-2026-28318: patch before June 19
CVE-2026-28318: unauthenticated POST crashes SolarWinds Serv-U. CVSS 7.5, CISA KEV listed June 5, deadline June 19. Apply Serv-U 15.5.4 Hotfix 1.
Kev
2 articles tagged #kev
Articles tagged Kev
Drupal SQL Injection CVE-2026-9082: Patch Now
CVE-2026-9082 is an unauthenticated SQL injection in Drupal core affecting all PostgreSQL-backed installations from 8.9 through 11.3.9. CISA added it to the KEV catalog on May 22 — active exploitation confirmed.