Ivanti security patch release for CVE-2026-8043
Security Patch Release
Summary
Hide ▲
Show ▼
Ivanti, Fortinet, SAP, Broadcom, and n8n released security fixes on 2026-05-18 for flaws that could enable authentication bypass, remote code execution, SQL injection, and privilege escalation. The roundup includes Ivanti Xtraction CVE-2026-8043, FortiAuthenticator/FortiSandbox vulnerabilities, SAP S/4HANA and SAP Commerce cloud issues, VMware Fusion CVE-2026-41702, and five n8n vulnerabilities. Fixes landed in versions including 2026.2, 6.5.7/6.6.9/8.0.3, 4.4.9/5.0.2/5.0.6, 26H1, and 1.123.32/1.123.43.
Related Happenings
Amazon security patch release for CVE-2026-50549
Security Patch Release
H score29
First: 09.07.2026 14:00
Last: 09.07.2026 14:00
Sources 1
About this happening:
**Amazon, Google and Cursor** shipped fixes for **GhostApproval**, a flaw in AI coding assistants that let deceptive repository paths bypass approval prompts. The patch response c...
Amazon security patch release for CVE-2026-50549
Security Patch ReleaseAbout this happening: **Amazon, Google and Cursor** shipped fixes for **GhostApproval**, a flaw in AI coding assistants that let deceptive repository paths bypass approval prompts. The patch response c...
Progress LoadMaster CVE-2026-8037 patch release
Security Patch Release
H score52
First: 30.06.2026 10:38
Last: 30.06.2026 10:38
Sources 1
About this happening:
**Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...
Progress LoadMaster CVE-2026-8037 patch release
Security Patch ReleaseAbout this happening: **Progress** published fixed **LoadMaster** versions for **CVE-2026-8037**, closing a **pre-auth root command execution** path on appliances with the API enabled. Administrators r...
AWS Amazon Q Developer patch for CVE-2026-12957 and CVE-2026-12958
Security Patch Release
H score18
First: 26.06.2026 18:23
Last: 26.06.2026 18:23
Sources 1
About this happening:
**AWS** released fixes for **Amazon Q Developer** after a high-severity flaw in the **VS Code extension** could expose developers’ **cloud credentials**. The patch set covers **CV...
AWS Amazon Q Developer patch for CVE-2026-12957 and CVE-2026-12958
Security Patch ReleaseAbout this happening: **AWS** released fixes for **Amazon Q Developer** after a high-severity flaw in the **VS Code extension** could expose developers’ **cloud credentials**. The patch set covers **CV...
Ubiquiti UniFi OS security patch release for CVE-2026-34908/34909/34910
Security Patch Release
H score53
First: 24.06.2026 20:19
Last: 24.06.2026 20:19
Sources 1
About this happening:
Ubiquiti released **UniFi OS** patches for **CVE-2026-34908**, **CVE-2026-34909**, and **CVE-2026-34910**, closing three maximum-severity defects tied to **in-the-wild exploitatio...
Ubiquiti UniFi OS security patch release for CVE-2026-34908/34909/34910
Security Patch ReleaseAbout this happening: Ubiquiti released **UniFi OS** patches for **CVE-2026-34908**, **CVE-2026-34909**, and **CVE-2026-34910**, closing three maximum-severity defects tied to **in-the-wild exploitatio...
F5 security patch release for CVE-2026-42530
Security Patch Release
H score39
First: 18.06.2026 20:32
Last: 18.06.2026 20:32
Sources 1
About this happening:
**F5** released security updates for **NGINX Open Source** after finding **two critical vulnerabilities** that could lead to **remote code execution** on affected systems. The pat...
F5 security patch release for CVE-2026-42530
Security Patch ReleaseAbout this happening: **F5** released security updates for **NGINX Open Source** after finding **two critical vulnerabilities** that could lead to **remote code execution** on affected systems. The pat...
Timeline
-
18.05.2026 13:54 2 articles · 1mo ago
Multi-vendor security fixes for Ivanti, Fortinet, SAP, Broadcom, and n8n
Initial DisclosureIvanti, Fortinet, SAP, Broadcom, and n8n released security fixes for vulnerabilities that could enable authentication bypass, remote code execution, SQL injection, information disclosure, and local privilege escalation. The patched issues include CVE-2026-8043 in Ivanti Xtraction; CVE-2026-44277 in FortiAuthenticator; CVE-2026-26083 in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS; CVE-2026-34260 in SAP S/4HANA; CVE-2026-34263 in SAP Commerce cloud configuration; CVE-2026-41702 in VMware Fusion; and five n8n flaws affecting xml2js-based XML parsing, prototype pollution, workflow modification, and Git node CLI flag injection.
Show sources
- Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54
- Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54