"The most severe of these security defects is CVE-2026-0234, an improper verification of a cryptographic signature issue in the Cortex XSOAR and Cortex XSIAM platforms' integration of Microsoft Teams. Successful exploitation of the weakness allows attackers to access and tamper with protected resources."
"SonicWall rolled out patches for four vulnerabilities in the SMA1000 series firewalls, including a high-severity SQL injection bug tracked as CVE-2026-4112. Successful exploitation of this flaw could allow attackers with read-only administrator privileges to obtain primary admin rights."
Palo Alto Networks issued patches for three vulnerabilities, including a critical issue in Cortex platforms that could allow unauthorized access to protected resources. Medium-severity vulnerabilities were also addressed, which could enable arbitrary code execution. SonicWall patched four vulnerabilities in its SMA1000 series firewalls, including a high-severity SQL injection flaw that could elevate privileges. Both companies reported no known exploitation of these vulnerabilities in the wild and urged users to apply the updates promptly.
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]