Live CVE counter

Critical vulnerability watch

Prioritized vulnerabilities for patching, exposure review, and detection engineering.

CVE-2026-3055

Citrix NetScaler Memory Overread (CitrixBleed 3)

Affected products: Citrix NetScaler ADC, NetScaler Gateway

9.4 CVSSActive exploitationKEV tracked

Recommended action: validate exposure, apply vendor patches, and add detection coverage for exploitation attempts.

Vendor: Citrix

Reference documentation

CVE-2026-35616

Fortinet FortiClient EMS Improper Access Control

Affected products: FortiClient EMS 7.4.x

9.8 CVSSKEV listedKEV tracked

Recommended action: validate exposure, apply vendor patches, and add detection coverage for exploitation attempts.

Vendor: Fortinet

Reference documentation

CVE-2026-34197

Apache ActiveMQ Classic Remote Code Execution

Affected products: Apache ActiveMQ Classic

9.8 CVSSPublic exploit available

Recommended action: validate exposure, apply vendor patches, and add detection coverage for exploitation attempts.

Vendor: Apache

Reference documentation

CVE-2026-5281

Google Chrome Dawn Use-After-Free Zero-Day

Affected products: Google Chrome, Chromium-based Browsers

8.8 CVSSActively exploited in the wild

Recommended action: validate exposure, apply vendor patches, and add detection coverage for exploitation attempts.

Vendor: Google

Reference documentation

CVE-2026-31431

Linux Kernel Copy Fail Privilege Escalation

Affected products: Linux Kernel, Cloud Linux Environments

8.5 CVSSExploit proof-of-concept

Recommended action: validate exposure, apply vendor patches, and add detection coverage for exploitation attempts.

Vendor: Linux Kernel

Reference documentation