Patch Apache Flink CVE-2026-35194 by upgrading to fixed Flink releases, restricting query submission, and reviewing recent cluster job activity.
Patch MLflow CVE-2026-2652 by updating to 3.10.0 or newer, restricting exposed MLOps services, and reviewing recent experiment activity.
Update Chrome 148.0.7778.167/168 after Google fixed 79 security issues, including multiple critical CVEs affecting desktop and managed fleets.
Patch or mitigate Fragnesia CVE-2026-46300 on Linux hosting, Proxmox, container, CloudLinux, AlmaLinux, Debian, and Ubuntu servers.
Patch Exim CVE-2026-45185 by updating to Exim 4.99.3 or vendor-fixed packages, restarting mail service, verifying mail flow, and reviewing logs.
Updated May 30: add CVE-2026-9256 and verify fixed NGINX 1.30.2 or 1.31.1 packages on hosting servers, CDN origins, reverse proxies, and Kubernetes workloads.
CVE-2026-4802 affects Cockpit on RHEL-family Linux servers. Restrict management access, patch Cockpit packages, and review admin activity safely.
Patch s3-proxy CVE-2026-42882 auth bypass risk. Safe hosting checklist for object-storage proxy admins.
Patch pgAdmin 4 server-mode security fixes in 9.15. Safe Docker, Linux, Windows, hosting, and database-admin checklist.
Patch PHP SOAP CVE-2026-6722 on WHM/cPanel, Linux, and container hosting servers. Includes safe version checks, restart steps, and customer guidance.
