Find notable cyber news and cases, enriched with sources, timelines, and signals.

Ivanti security patch release for CVE-2026-8043

Security Patch Release
First reported
Last updated
Happening score
H score 25
1 unique sources, 1 articles

Summary

Hide ▲

Ivanti, Fortinet, SAP, Broadcom, and n8n released security fixes on 2026-05-18 for flaws that could enable authentication bypass, remote code execution, SQL injection, and privilege escalation. The roundup includes Ivanti Xtraction CVE-2026-8043, FortiAuthenticator/FortiSandbox vulnerabilities, SAP S/4HANA and SAP Commerce cloud issues, VMware Fusion CVE-2026-41702, and five n8n vulnerabilities. Fixes landed in versions including 2026.2, 6.5.7/6.6.9/8.0.3, 4.4.9/5.0.2/5.0.6, 26H1, and 1.123.32/1.123.43.

Related Happenings

Amazon security patch release for CVE-2026-50549

Security Patch Release
H score29 First: 09.07.2026 14:00 Last: 09.07.2026 14:00 Sources 1

About this happening: **Amazon, Google and Cursor** shipped fixes for **GhostApproval**, a flaw in AI coding assistants that let deceptive repository paths bypass approval prompts. The patch response c...

Progress LoadMaster CVE-2026-8037 patch release

Security Patch Release
H score52 First: 30.06.2026 10:38 Last: 30.06.2026 10:38 Sources 1

About this happening: **Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...

AWS Amazon Q Developer patch for CVE-2026-12957 and CVE-2026-12958

Security Patch Release
H score18 First: 26.06.2026 18:23 Last: 26.06.2026 18:23 Sources 1

About this happening: **AWS** released fixes for **Amazon Q Developer** after a high-severity flaw in the **VS Code extension** could expose developers’ **cloud credentials**. The patch set covers **CV...

Ubiquiti UniFi OS security patch release for CVE-2026-34908/34909/34910

Security Patch Release
H score53 First: 24.06.2026 20:19 Last: 24.06.2026 20:19 Sources 1

About this happening: Ubiquiti released **UniFi OS** patches for **CVE-2026-34908**, **CVE-2026-34909**, and **CVE-2026-34910**, closing three maximum-severity defects tied to **in-the-wild exploitatio...

F5 security patch release for CVE-2026-42530

Security Patch Release
H score39 First: 18.06.2026 20:32 Last: 18.06.2026 20:32 Sources 1

About this happening: **F5** released security updates for **NGINX Open Source** after finding **two critical vulnerabilities** that could lead to **remote code execution** on affected systems. The pat...

Timeline

  1. 18.05.2026 13:54 2 articles · 1mo ago

    Multi-vendor security fixes for Ivanti, Fortinet, SAP, Broadcom, and n8n

    Initial Disclosure

    Ivanti, Fortinet, SAP, Broadcom, and n8n released security fixes for vulnerabilities that could enable authentication bypass, remote code execution, SQL injection, information disclosure, and local privilege escalation. The patched issues include CVE-2026-8043 in Ivanti Xtraction; CVE-2026-44277 in FortiAuthenticator; CVE-2026-26083 in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS; CVE-2026-34260 in SAP S/4HANA; CVE-2026-34263 in SAP Commerce cloud configuration; CVE-2026-41702 in VMware Fusion; and five n8n flaws affecting xml2js-based XML parsing, prototype pollution, workflow modification, and Git node CLI flag injection.

    Show sources