$ category --patch-and-defense
Patch & Defense
Practical, prioritized guidance — Patch Tuesday, the KEV tracker, what to actually do.
progress
Kemp LoadMaster pre-auth RCE (CVE-2026-8037): PoC is out, patch now
A functional proof-of-concept for a critical pre-auth RCE in Progress Kemp LoadMaster hit the internet on June 29 and eSentire started seeing exploitation attempts the same day. Progress's fix has been available since June 4.
read →
● Breaking
microsoft
SharePoint RCE now on CISA KEV: patch it this week, not next
CISA added CVE-2026-45659, a high-severity SharePoint Server deserialization RCE, to the Known Exploited Vulnerabilities catalog on July 2 after confirming active exploitation. Microsoft's May patch is your remediation.
read →