tag
Credential-Theft
Critical
Fortinet FortiClient EMS Pre-Auth Bypass — "FortiBleed" (CVE-2026-35616)
CVE-2026-35616·
Fortinet FortiClient Endpoint Management Server (EMS)
unpatched
Medium
Squidbleed — Squid Proxy FTP Gateway Out-of-Bounds Heap Read (CVE-2026-47729)
CVE-2026-47729·
Squid Proxy — FTP gateway / directory-listing parser
patched
Medium
Windows NTLM Hash Disclosure via File Explorer - CVE-2025-24054
CVE-2025-24054·
Windows File Explorer (Windows Shell)
patched
Critical
Jenkins CLI Arbitrary File Read to RCE (CVE-2024-23897)
CVE-2024-23897·
Jenkins controller (CLI endpoint)
unpatched