CYBER Threat Intelligence Reports
LATEST CTIs
CVE-2025-12420 (“BodySnatcher”): Unauthenticated User Impersonation in ServiceNow AI Platform
CVE-2025-12420 is a critical (CVSS 9.3) vulnerability in the ServiceNow AI Platform that can allow a remote, unauthenticated attacker to impersonate another user and then…
Read more >
N8MARE / Ni8mare: Critical n8n Flaw Enables Unauthenticated File Access: CVE-2026-21858
On January 7, 2026, n8n disclosed a critical vulnerability tracked as CVE-2026-21858 (CVSS 10.0), dubbed “Ni8mare” (often referenced as “N8MARE”). The issue can allow an…
Read more >
MongoDB Zlib Protocol Vulnerability (MongoBleed): CVE-2025-14847
MongoDB has issued an urgent security advisory warning administrators to patch a high-severity vulnerability affecting MongoDB Server deployments. The vulnerability, tracked as CVE-2025-14847, stems from…
Read more >
Critical n8n Workflow Automation RCE: CVE-2025-68613
A critical remote code execution vulnerability has been disclosed in the n8n workflow automation platform that could allow attackers to execute arbitrary code on affected…
Read more >
WatchGuard Firebox RCE Actively Exploited in the Wild: CVE-2025-14733
WatchGuard has disclosed a critical remote code execution (RCE) vulnerability affecting Firebox firewall appliances running the Fireware operating system. The vulnerability, tracked as CVE-2025-14733, is…
Read more >
SonicWall SMA 1000 Privilege Escalation: CVE-2025-40602
Threat actors are actively exploiting a privilege escalation vulnerability affecting SonicWall Secure Mobile Access (SMA) 1000 series appliances. The vulnerability, tracked as CVE-2025-40602, stems from…
Read more >
