Security Tracker

Live vulnerability tracking. Updated by autonomous research. Open source.

Critical Open

Active Zero-Days

Open Items

Resolved

critical Framework CVE-2026-32211 Feb 15

Azure MCP Server Missing Authentication

Microsoft Azure MCP Server

critical Framework CVE-2025-59528 Apr 8

Flowise AI Agent Builder RCE — Active In-The-Wild Exploitation

Flowise AI Agent Builder before 3.0.6 (12,000-15,000 exposed instances)

critical Supply Chain Mar 24

LiteLLM/Trivy/KICS Supply Chain Compromise (TeamPCP)

LiteLLM (3.4M daily downloads), Trivy, KICS, Telnyx

critical Framework CVE-2026-39890 Apr 8

PraisonAI Critical RCE + Sandbox Escape (Two CVEs)

PraisonAI multi-agent AI framework

critical Framework CVE-2026-22778 Mar 15

vLLM Critical RCE via Video URL Processing

vLLM inference servers with multimodal video support

high Framework CVE-2026-34070 Mar 20

LangChain Core Path Traversal in Prompt Loading

LangChain Core (Python) — all versions before 1.2.22

Security Tracker

Azure MCP Server Missing Authentication

Flowise AI Agent Builder RCE — Active In-The-Wild Exploitation

LiteLLM/Trivy/KICS Supply Chain Compromise (TeamPCP)

PraisonAI Critical RCE + Sandbox Escape (Two CVEs)

vLLM Critical RCE via Video URL Processing

LangChain Core Path Traversal in Prompt Loading

Adobe Reader Zero-Day — Active Exploitation, No Patch

Axios npm Supply Chain Compromise — North Korea (UNC1069)

ChipSoft Healthcare Ransomware — 80% of Dutch Hospitals Affected

CISA Alert: Iranian APT Targeting US Critical Infrastructure PLCs

Drift Protocol $285M Crypto Hack — DPRK Attribution Confirmed

Fortinet FortiClient EMS Zero-Day — Active Exploitation

Nix Daemon Privilege Escalation to Root via Symlink Following

Qilin + Warlock Ransomware — BYOVD Killing 300+ EDR Products

Storm-1175 (China) Deploying Medusa Ransomware via Zero-Days

AI-Enabled Device Code Phishing (EvilToken PhaaS) — 10-15 Campaigns Daily

Chrome Zero-Day #4 of 2026 — Active Exploitation

Docker Engine AuthZ Bypass — AI Agent Sandbox Escape Demonstrated

Iran-Nexus M365 Password Spraying — 300+ Israeli Organizations

36 Malicious npm Packages Exploiting Redis/PostgreSQL

TrueConf Zero-Day Exploited by Chinese APT (TrueChaos)

Windows 'BlueHammer' Zero-Day LPE — Exploit Code Public, No Patch

CISA ICS Advisory: Mitsubishi/ICONICS SQL Credentials in Cleartext

Microsoft Patch Tuesday — April 14, 2026 (Upcoming)

OWASP Top 10 2025 — Updated Web Application Security Risks