Skip to content
Auto-CTI

CTI status

Joel Traber AG

As of:

Last pipeline run:

Status High

All threats

Full list, filterable by severity, tag and KEV status, sortable by relevance, EPSS, CVSS or date.

156 of 300 threats
Tags
Admiralty grading (A–F · 1–6)

Source reliability

  • A Completely reliable
  • B Usually reliable
  • C Fairly reliable
  • D Not usually reliable
  • E Unreliable
  • F Cannot be judged

Information credibility

  • 1 Confirmed
  • 2 Probably true
  • 3 Possibly true
  • 4 Doubtful
  • 5 Improbable
  • 6 Cannot be judged

NATO Admiralty (AJP-2.1) grades confidence, independent of the risk score. Cross-source corroboration isn't tracked for non-CVE news, so single-source items are capped at a lower credibility number; a low number does not imply low quality.

KEV Simple-Help C1
67

'Djinn' Stealer Targets Cloud, AI Credentials

The campaign demonstrates that attackers leverage RMM tools as entry points to steal cloud and AI credentials using admin privileges, enabling broad network compromise.

High CVSS 10.0 EPSS 1%
NEW Microsoft C3
71

Microsoft Patches Defender 'RoguePlanet' Vulnerability

A privilege escalation flaw in Microsoft's malware protection engine could allow attackers with limited rights to escalate to system level and compromise the security infrastructure itself.

High CVSS 7.8 EPSS 3%
NEW Adobe A2
71

CVE-2026-57256

A validation failure in PDF form objects during JavaScript execution leads to invalid pointer access and application crash, potentially exploitable for denial-of-service.

High CVSS 7.8 EPSS 0%
NEW Adobe A2
71

CVE-2026-57252

The vulnerability enables PDF application crashes through manipulated JavaScript code during page deletion and annotation removal, with no remote code execution or data loss documented.

High CVSS 7.8 EPSS 0%
NEW Adobe A2
71

CVE-2026-57250

A flaw in PDF applications enables crash-through-service via malformed JavaScript form fields without validation checks.

High CVSS 7.8 EPSS 0%
NEW Adobe A2
71

CVE-2026-57245

The vulnerability enables a heap corruption condition through improper validation of PDF annotation relationships, potentially leading to crashes or code execution.

High CVSS 7.8 EPSS 0%
NEW Adobe A2
71

CVE-2026-57238

The vulnerability causes DoS through invalid object access after JavaScript deletion of form fields in PDF documents; no remote code execution.

High CVSS 7.8 EPSS 0%
NEW Adobe A2
71

CVE-2026-57237

A memory-corruption flaw in PDF applications can be triggered by malicious JavaScript in form fields, leading to application crashes; remote code execution potential is unclear from the advisory.

High CVSS 7.8 EPSS 0%
NEW Adobe A2
71

CVE-2026-13129

A JavaScript-based field traversal vulnerability in PDF applications can cause application crash through invalid pointer dereference when a corrupted field form is opened.

High CVSS 7.8 EPSS 0%
NEW Linux, Google Chrome PolinRider (North Korea-aligned) B3
70

6th July , Threat Intelligence Report

North Korea-aligned PolinRider campaign distributes 100+ malicious packages across open-source registries and Chrome extensions; targets developer supply chains critical to manufacturing environments (CAD, ERP integrations).

High
NEW A2
68

CVE-2026-57239

The vulnerability allows local users to escalate privileges to NT AUTHORITY\SYSTEM level via user-controllable executable files; however, the vendor, PoC status, and active exploitation details remain unclear.

High CVSS 8.2 EPSS 0%
NEW Sap A2
67

CVE-2026-44769

The vulnerability requires already-high privileges for exploitation and is limited to confidentiality impact, indicating relatively constrained risk in typical deployment scenarios.

High CVSS 5.5 EPSS 0%
NEW Sap A3
20

SAP Patch Day July 2026

The Patch Day aggregates multiple vulnerabilities (RCE, DoS, information disclosure, SQL injection, XSS) with varying impacts and requires prioritized patch management.

High
7-Zip A3
20

[UPDATE] 7-Zip: Multiple Vulnerabilities

The BSI warning describes multiple 7-Zip vulnerabilities without specific CVE numbers or CVSS scores; further details on exploitability and affected versions are required.

High
NEW Microsoft C3
20

Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft

Forg365 demonstrates the industrialization of phishing-as-a-service with AI-assisted lure generation, SMTP rotation via Amazon SES/Twilio SendGrid, and post-compromise mailbox operations for under €400 per month, enabling even low-skill threat actors to orchestrate scaled campaigns against Microsoft 365.

High
NEW Microsoft A3
20

Microsoft Edge: Multiple Vulnerabilities

BSI warns of multiple unspecified vulnerabilities in Microsoft Edge enabling code execution and privilege escalation; exploitation requires user interaction.

High
ESC