Today’s Briefing
CVE-2026-33112 in Microsoft SharePoint allows authenticated remote code execution and appears in NHS Digital alerting today. Microsoft has also patched the RoguePlanet zero-day in Defender, closing a watch item from last month. The watchlist carries six critical severity items today, led by an unrestricted file upload flaw in Esri ArcGIS Server (CVE-2026-9182) and a directory traversal issue in the same product (CVE-2026-9181), both affecting unauthenticated attack surface.
Top Stories
Full brief available to subscribers
The complete operator brief — action items with patch deadlines, the vulnerability appendix and named actor activity — goes out by email each morning. Subscribe free to receive it.
Get the brief at 07:00, every weekday.
The day's UK security intelligence, read and ranked so you start informed: the stories that matter, the IOCs your SIEM needs, and the actions worth taking first.