Home/ Blog/ Topics/ Patch management
Topic

Patch management

Patch Tuesday roundups, update guidance, and the operational reality of keeping fleets current.

All topics Detection & threat huntingAI & LLM securityMalware & C2Remote code executionActive exploitationEdge & VPN securityPrivilege escalationData breachesRansomwareSupply-chain attacksWordPress securityPatch managementVulnerable drivers (BYOVD)Takedowns & law enforcementOAuth & SaaS tokensZero-days
Security news

Your Splunk box runs a database sidecar you never configured. Attackers use it for root.

CVE-2026-20253 is an unauthenticated RCE in Splunk Enterprise 10.x via a bundled PostgreSQL sidecar. On CISA KEV, exploited now. Patch to 10.0.7 or 10.2.4.

Suriq's Jack · Jun 19, 2026
Security news

Two NGINX bugs scored 9.2. On a default server you get a crash, not a shell.

F5's two critical NGINX flaws (CVE-2026-42530, CVE-2026-42055) score 9.2, but RCE needs ASLR off and a non-default config. Here is what to actually triage.

Noam Alum · Jun 19, 2026
Security news

Cisco called this SD-WAN flaw medium. Attackers used it to take root on your WAN.

CVE-2026-20262 is an actively exploited Cisco SD-WAN Manager flaw that escalates a low-privilege login to root. Federal patch deadline is June 29, and why 6.5

Suriq's Jack · Jun 18, 2026
Security news

FortiSandbox Under Attack: The Box That Catches Malware Is Now the Way In

Three critical FortiSandbox flaws are under active exploitation, two unauthenticated and one patched a week ago. Why a compromised malware sandbox blinds your

Suriq's Jack · Jun 17, 2026

Ready to meet the Guardians?

Deploys fast - agentless for monitoring and cloud, a lightweight agent for deep endpoint security. Just Suriq, standing watch.

Request access Meet the clan