Feb 25, 2026 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Cisco Catalyst SD-WAN Controller And Manager: 2 CVEs added to CISA KEV today.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2022-20775 Cisco SD-WAN Path Traversal

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Network edge / SD-WAN deployments affected

Cisco SD-WAN Path Traversal is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2026-27613 TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32.

  • CVSS 10
  • Remote code execution exposure

New critical Ritlabs Tinyweb RCE (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2026-27941 OpenLIT is an open source platform for AI engineering.

  • CVSS 9.9
  • Potential privilege escalation to admin/root

New critical Openlit Software Development Kit privilege escalation (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2026-27493 CVSS 9.5

n8n is an open source workflow automation platform.

CVE-2026-27495 CVSS 9.4

n8n is an open source workflow automation platform.

CVE-2026-27497 CVSS 9.4

n8n is an open source workflow automation platform.

n8n is an open source workflow automation platform.

CVE-2026-27577 CVSS 9.4

n8n is an open source workflow automation platform.

CVE-2026-27613 CVSS 10

TinyWeb is a web server (HTTP, HTTPS) written in Delphi for Win32.

CVE-2026-27804 CVSS 9.3

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js.

CVE-2026-27941 CVSS 9.9

OpenLIT is an open source platform for AI engineering.

CVE-2026-27966 CVSS 9.8

Langflow is a tool for building and deploying AI-powered agents and workflows.

CVE-2026-27969 CVSS 9.3

Vitess is a database clustering system for horizontal scaling of MySQL.

View critical disclosures

cvelogic Threat Intelligence