Today’s Briefing
CISA added four vulnerabilities to the KEV catalogue today, led by CVE-2026-48282, a path traversal flaw in Adobe ColdFusion that permits arbitrary code execution. The other three are file upload and access control flaws in JoomShaper SP Page Builder (CVE-2026-48908), Joomlack Page Builder (CVE-2026-56290), and Langflow (CVE-2026-55255), all enabling unauthenticated or low-privilege remote code execution. Separately, Cisco Talos published updated research on UAT-7810, reporting continued development of custom malware for ORB network construction. NHS Digital issued a medium severity alert for BeyondTrust Remote Support and Privileged Remote Access covering two critical and two high impact vulnerabilities, materialising a watch item from earlier in the week.
Top Stories
Full brief available to subscribers
The complete operator brief — action items with patch deadlines, the vulnerability appendix and named actor activity — goes out by email each morning. Subscribe free to receive it.
Get the brief at 07:00, every weekday.
The day's UK security intelligence, read and ranked so you start informed: the stories that matter, the IOCs your SIEM needs, and the actions worth taking first.