Fortinet Multiple Products Auth Bypass is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2026-23830SandboxJS is a JavaScript sandboxing library.
CVSS 10
Remote code execution exposure
New critical Nyariv Sandboxjs Code Execution (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2025-14988A security issue has been identified in ibaPDA that could allow unauthorized actions on the file...
CVSS 10
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.