T1203

CVE Exploit Alert: CVE-2009-0238 | HIGH | CVSS 8.8 | Microsoft Office

by

🟠 HIGH Severity Overview CVSS Base Score: 8.8 Severity: HIGH CVSS Version: 3.1 Priority: High priority Summary Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and … Read more

CVE Exploit Alert: CVE-2026-34621 | HIGH | CVSS 8.6 | Adobe Acrobat and Reader

by

🟠 HIGH Severity Overview CVSS Base Score: 8.6 Severity: HIGH CVSS Version: 3.1 Priority: High priority Summary Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes (‘Prototype Pollution’) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this … Read more

CVE Exploit Alert: CVE-2020-9715 | HIGH | CVSS 7.8 | Adobe Acrobat

by

🟠 HIGH Severity Overview CVSS Base Score: 7.8 Severity: HIGH CVSS Version: 3.1 Priority: Elevated priority Summary Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution . Analyst Takeaway This vulnerability is already in CISA KEV, … Read more

CVE Exploit Alert: CVE-2012-1854 | HIGH | CVSS 7.8 | Microsoft Visual Basic for Applications (VBA)

by

🟠 HIGH Severity Overview CVSS Base Score: 7.8 Severity: HIGH CVSS Version: 3.1 Priority: Elevated priority Summary Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications (VBA); and Summit Microsoft Visual Basic for Applications SDK allows local users to … Read more

CVE Exploit Alert: CVE-2026-5281 | HIGH | CVSS 8.8 | Google Dawn

by

🟠 HIGH Severity Overview CVSS Base Score: 8.8 Severity: HIGH CVSS Version: 3.1 Priority: High priority Summary Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium security severity: High) Analyst Takeaway This vulnerability … Read more

CVE Exploit Alert: CVE-2026-33634 | CRITICAL | CVSS 9.4 | Aquasecurity Trivy

by

🔴 CRITICAL Severity Overview CVSS Base Score: 9.4 Severity: CRITICAL CVSS Version: 4.0 Priority: Critical priority Summary Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy v0.69.4 release, force-push 76 of 77 version tags in `aquasecurity/trivy-action` to credential-stealing malware, and replace all 7 tags … Read more