Quickfire Cyber Bulletin June 5, 2026

Quickfire Cyber Bulletin — May 22, 2026

Daily cybersecurity briefing for Friday, May 22, 2026. This brief covers 37 items sourced from CISA KEV, NVD, EPSS, GitHub Security Advisories, and selected cybersecurity news feeds. Items are ranked by practical relevance to small organisations and solo sysadmins. This briefing is informational only — see the About page for limitations and disclaimer.

Known Exploited Vulnerabilities

High CVE-2023-23752

Joomla! Improper Access Control Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 95% probability of exploitation in the next 30 days. Affects Joomla! Joomla!.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2018-7600

Drupal Core Remote Code Execution Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Drupal Drupal Core.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2018-1000861

Jenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Jenkins Jenkins Stapler Web Framework.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2021-22005

VMware vCenter Server File Upload Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects VMware vCenter Server.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2019-0708

Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Microsoft Remote Desktop Services.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2018-13379

Fortinet FortiOS SSL VPN Path Traversal Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Fortinet FortiOS.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2021-22205

GitLab Community and Enterprise Editions Remote Code Execution Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects GitLab Community and Enterprise Editions.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2019-17558

Apache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Apache Solr.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2021-44228

Apache Log4j2 Remote Code Execution Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Apache Log4j2.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev
High CVE-2020-1938

Apache Tomcat Improper Privilege Management Vulnerability

Why this matters:

This vulnerability is listed as actively exploited by CISA. EPSS gives it a 94% probability of exploitation in the next 30 days. Affects Apache Tomcat.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Check for signs of exploitation in recent logs.
  • Review the CISA KEV entry for remediation due dates.
Sources: NVD Cisa Kev

High Exploit-Probability Vulnerabilities

Low CVE-2013-2566

CVE-2013-2566

Why this matters:

EPSS gives it a 91% probability of exploitation in the next 30 days. CVSS severity is MEDIUM. Affects Oracle Communications Application Session Controller.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Informational CVE-2022-27224

CVE-2022-27224

Why this matters:

EPSS gives it a 12% probability of exploitation in the next 30 days. CVSS severity is HIGH. Affects Galsys Nts-6002-Gps Firmware.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD

Microsoft / Windows / M365

Low CVE-2026-42822

CVE-2026-42822

Why this matters:

CVSS severity is CRITICAL. Affects Microsoft Azure Local.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2025-60724

CVE-2025-60724

Why this matters:

CVSS severity is CRITICAL. Affects Microsoft Office.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2025-53766

CVE-2025-53766

Why this matters:

CVSS severity is CRITICAL. Affects Microsoft Office.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-40363

CVE-2026-40363

Why this matters:

CVSS severity is HIGH. Affects Microsoft 365 Apps.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-26110

CVE-2026-26110

Why this matters:

CVSS severity is HIGH. Affects Microsoft 365 Apps.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2025-62557

CVE-2025-62557

Why this matters:

CVSS severity is HIGH. Affects Microsoft 365 Apps.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD

Routers / VPN / Firewalls

Low CVE-2023-1833

CVE-2023-1833

Why this matters:

CVSS severity is CRITICAL. Affects Redline Router Firmware.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Verify whether the device is internet-facing and restrict management access if so.
Sources: NVD
Low CVE-2023-1803

CVE-2023-1803

Why this matters:

CVSS severity is CRITICAL. Affects Redline Router Firmware.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Verify whether the device is internet-facing and restrict management access if so.
Sources: NVD
Low CVE-2026-32323

CVE-2026-32323

Why this matters:

CVSS severity is HIGH. Affects Mullvad Mullvad Vpn.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
  • Verify whether the device is internet-facing and restrict management access if so.
Sources: NVD

Developer Ecosystem Advisories

Low CVE-2022-23307

CVE-2022-23307

Why this matters:

CVSS severity is HIGH. Affects Apache Chainsaw.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2022-23302

CVE-2022-23302

Why this matters:

CVSS severity is HIGH. Affects Apache Log4J.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-40161

CVE-2026-40161

Why this matters:

CVSS severity is HIGH. Affects Linuxfoundation Tekton Pipelines.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-40938

CVE-2026-40938

Why this matters:

CVSS severity is HIGH. Affects Linuxfoundation Tekton Pipelines.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Informational CVE-2026-40924

CVE-2026-40924

Why this matters:

CVSS severity is MEDIUM. Affects Linuxfoundation Tekton Pipelines.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Informational CVE-2026-25542

CVE-2026-25542

Why this matters:

CVSS severity is MEDIUM. Affects Linuxfoundation Tekton Pipelines.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD

Lower-Priority Noise

Low CVE-2026-34910

CVE-2026-34910

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-34909

CVE-2026-34909

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-34908

CVE-2026-34908

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2025-71211

CVE-2025-71211

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2025-71210

CVE-2025-71210

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-6960

CVE-2026-6960

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-48207

CVE-2026-48207

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-4698

CVE-2026-4698

Why this matters:

CVSS severity is CRITICAL. Affects Mozilla Firefox.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-5433

CVE-2026-5433

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD
Low CVE-2026-33000

CVE-2026-33000

Why this matters:

CVSS severity is CRITICAL.

Suggested checks
  • Confirm whether your organisation uses the affected product or version.
  • Check the installed version against the vendor's affected version range.
  • Review vendor patch guidance and apply available updates.
Sources: NVD