Patch Ivanti Sentry to R10.5.2, R10.6.2, or R10.7.1, then review exposed gateways, administrator accounts, logs, mobile traffic, and customer access.
Update UpdraftPlus to 1.26.5 or newer after CVE-2026-10795, then verify backups, remote management, admin users, and restore points safely.
Track the public Microsoft Defender RoguePlanet zero-day report, keep June 2026 Windows updates and Defender updates current, and harden admin workstations safely.
Update Everest Forms to 3.4.8 or newer after CVE-2026-3296 and CVE-2026-5478, then review forms, uploads, users, and site files safely.
Microsoft published the June 2026 Security Updates on June 9. Plan Windows, Server, IIS, RDS, Hyper-V, domain controller, and admin workstation patching with verification.
CISA added Arista EOS CVE-2026-7473 to KEV on June 9, 2026. Patch affected EOS switches, review VXLAN/GRE decapsulation exposure, and verify fabric behavior.
CISA added Cisco Catalyst SD-WAN Manager CVE-2026-20245 to KEV on June 9, 2026. Patch SD-WAN Manager, review edge configuration changes, and protect management access.
CISA added Chrome CVE-2026-11645 to KEV on June 9, 2026. Patch Chrome and Chromium-based admin browsers, restart, verify versions, and review risky sessions.
HAProxy 3.4 is a new LTS branch with dynamic backends, OpenTelemetry, TLS updates, ACME improvements, and reliability changes. Plan upgrades safely.
Broadcom published VMSA-2026-0004 for VMware Cloud Foundation Operations and Aria Operations. Patch fixed versions, review admin roles, and verify management workflows.
