Cisco SD-WAN Path Traversal is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2026-27613TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32.
CVSS 10
Remote code execution exposure
New critical Ritlabs Tinyweb RCE (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2026-27941OpenLIT is an open source platform for AI engineering.
CVSS 9.9
Potential privilege escalation to admin/root
New critical Openlit Software Development Kit privilege escalation (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.