Radar
A personal hobby project. Radar aggregates security advisories from CISA, Zero Day Initiative and CERT-EU and adds short editorial highlights on what I find notable from a European infrastructure perspective — not a threat-intel service, not exhaustive, just what catches my eye.
-
2026-006: Critical Vulnerability in PAN-OS
Palo Alto Networks reports limited exploitation of this vulnerability in the wild. The vulnerability permits unauthenticated attackers to execute arbitrary code with root privileges.
Read more → -
2026-005: High Vulnerability in the Linux Kernel ("Copy Fail")
Affects every major Linux distribution with kernels built since 2017. A public exploit is already available.
Read more → -
2026-004: Critical Vulnerability in SharePoint Exploited
Microsoft updated its advisory to state that this SharePoint RCE vulnerability can now be exploited by unauthenticated attackers. CISA added it to the Known Exploited Vulnerabilities catalog.
Read more → -
2026-003: Multiple Vulnerabilities in Citrix NetScaler and Citrix ADC
Citrix NetScaler ADC and Gateway have multiple vulnerabilities that may disclose sensitive information and mix-up user sessions under specific configurations.
Read more → -
2026-002: Multiple Vulnerabilities in Cisco Products
CVE-2026-20127 has been exploited in the wild since 2023. Cisco recommends capturing forensic evidence and hunting for indicators of compromise.
Read more → -
2026-001: Critical vulnerabilities in Ivanti EPMM
One of the vulnerabilities has been exploited in a limited number of cases. The advisory addresses two critical vulnerabilities enabling unauthenticated remote code execution.
Read more → -
2025-042: Critical Vulnerability in Cisco Secure Email and Web Manager
No patch is currently available for this vulnerability. Cisco recommends checking for signs of compromise on affected appliances.
Read more → -
2025-041: Critical Security Vulnerability in React Server Components
React Server Components vulnerability enables unauthenticated remote code execution via HTTP requests. The React Team disclosed this on December 3, 2025.
Read more → -
2025-040: Critical Vulnerability in Windows Server Update Service (WSUS)
A proof-of-concept exploit is publicly available for this WSUS vulnerability. The update was released out-of-band by Microsoft.
Read more → -
2025-039: High Severity Vulnerability in FortiOS
Fortinet released an advisory for a high-severity FortiOS vulnerability on October 14, 2025. The advisory recommends updating affected products.
Read more → -
2025-038: Critical Vulnerabilities in Veeam Backup
Veeam Backup has two critical vulnerabilities requiring immediate update. The advisory does not detail specific exploitation conditions or affected deployment contexts.
Read more → -
2025-037: Multiple Vulnerabilities in F5 Products
A nation-state actor accessed F5's source code and undisclosed vulnerability information. Patches were released on the same day as the disclosure.
Read more →