【CVE-2025-47813】Wing FTP Server Information Disclosure Vulnerability (CVSS v3.1: 4.3)
【Ransomware Exploitation: Unknown】 Wing FTP Server generates an error message containing sensitive information when a long value is used in the UID Cookie, thereby resulting in an information disclosure vulnerability.

【CVE-2025-66376】Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability (CVSS v3.1: 7.2)
【Ransomware Exploitation: Unknown】 The Classic UI of Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability, which attackers can exploit by abusing the Cascading Style Sheets (CSS) @import directive in email HTML.

【CVE-2026-20963】Microsoft SharePoint Deserialization of Untrusted Data Vulnerability (CVSS v3.1: 8.8)
【Ransomware Exploitation: Unknown】 Microsoft SharePoint contains a deserialization of untrusted data vulnerability. An unauthorized attacker can execute code over the network.

【CVE-2026-20131】Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability (CVSS v3.1: 10.0)
【Ransomware Exploitation: Yes】 Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management contain a deserialization of untrusted data vulnerability in their web-based management interface, which may allow an unauthenticated remote attacker to execute arbitrary Java code with root privileges on an affected device.

【CVE-2025-32432】Craft CMS Code Injection Vulnerability (CVSS v3.1: 10.0)
【Ransomware Exploitation: Unknown】 Craft CMS contains a code injection vulnerability that allows a remote attacker to execute arbitrary code.

【CVE-2025-54068】Laravel Livewire Code Injection Vulnerability (CVSS v3.1: 9.8)
【Ransomware Exploitation: Unknown】 Laravel Livewire contains a code injection vulnerability that may allow an unauthenticated attacker to achieve remote command execution under specific conditions.

【CVE-2025-43510】Apple Multiple Products Improper Locking Vulnerability (CVSS v3.1: 7.8)
【Ransomware Exploitation: Unknown】 Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locking vulnerability, which may allow a malicious app to cause unexpected modifications to memory shared between processes.

【CVE-2025-43520】Apple Multiple Products Classic Buffer Overflow Vulnerability (CVSS v3.1: 5.5)
【Ransomware Exploitation: Unknown】 Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability, which may allow a malicious app to cause an unexpected system termination or write to kernel memory.

【CVE-2025-31277】Apple Multiple Products Buffer Overflow Vulnerability (CVSS v3.1: 8.8)
【Ransomware Exploitation: Unknown】 Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer overflow vulnerability, which may allow the system to process maliciously crafted web content and consequently result in memory corruption.

【CVE-2025-47813】Versions prior to Wing FTP Server 7.4.4

【CVE-2025-66376】Please refer to the affected versions listed by the official source: https://wiki.zimbra.com/wiki/Security_Center

【CVE-2026-20963】Please refer to the affected versions listed by the official source: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20963

【CVE-2026-20131】Please refer to the affected versions listed by the official source: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-rce-NKhnULJh

【CVE-2025-32432】Please refer to the affected versions listed by the official source: https://craftcms.com/knowledge-base/craft-cms-cve-2025-32432

【CVE-2025-54068】Please refer to the affected versions listed by the official source: https://github.com/livewire/livewire/security/advisories/GHSA-29cq-5w36-x7w3

【CVE-2025-43510】Please refer to the affected versions listed by the official source:
https://support.apple.com/en-us/125632
https://support.apple.com/en-us/125633
https://support.apple.com/en-us/125634
https://support.apple.com/en-us/125635
https://support.apple.com/en-us/125636
https://support.apple.com/en-us/125637
https://support.apple.com/en-us/125638
https://support.apple.com/en-us/125639

【CVE-2025-43520】Please refer to the affected versions listed by the official source:
https://support.apple.com/en-us/125632
https://support.apple.com/en-us/125633
https://support.apple.com/en-us/125634
https://support.apple.com/en-us/125635
https://support.apple.com/en-us/125636
https://support.apple.com/en-us/125637
https://support.apple.com/en-us/125638
https://support.apple.com/en-us/125639

【CVE-2025-31277】Please refer to the affected versions listed by the official source:
https://support.apple.com/en-us/124147
https://support.apple.com/en-us/124149
https://support.apple.com/en-us/124152
https://support.apple.com/en-us/124153
https://support.apple.com/en-us/124154
https://support.apple.com/en-us/124155