News

CISA Flags VMware Aria Operations RCE Vulnerability CVE-2026-22719 as Exploited

Luciano Ferrari

04 Mar 2026 — 2 min read

Wednesday, March 4, 2026

Top 5 Cybersecurity Stories You Should Know

CISA Flags VMware Aria Operations RCE Vulnerability CVE-2026-22719 as Exploited — tl;dr: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added VMware Aria Operations vulnerability CVE-2026-22719 to its Known Exploited Vulnerabilities catalog, indicating active exploitation in attacks. This command injection flaw allows unauthenticated attackers to execute arbitrary commands, potentially leading to remote code execution. Organizations using VMware Aria Operations are urged to apply the security patches released on February 24, 2026, or implement the provided temporary workaround immediately to mitigate risks, especially given the reported exploitation in the wild.
↪ https://www.bleepingcomputer.com/news/security/cisa-flags-vmware-aria-operations-rce-flaw-as-exploited-in-attacks/
AI-Driven Cyber Attacks Surge, Exploiting Cloud Services and Identity Theft — tl;dr: A recent report by Cloudforce One reveals that AI is revolutionizing cyber attacks, enabling low-skill actors to execute high-velocity operations with minimal effort. Attackers now prefer techniques like session token theft and leveraging trusted cloud services for command-and-control operations. Notable nation-state groups are using platforms like Google Drive and Microsoft Teams to mask their activities. Organizations are urged to adopt autonomous defense models, enhance SaaS security, and monitor for identity theft to combat these evolving threats effectively. The report underscores the need for proactive measures as AI continues to reshape the cybersecurity landscape.
↪ https://gbhackers.com/ai-accelerates-high-velocity/
HPE AutoPass CVE-2026-23600: Critical Remote Authentication Bypass Vulnerability — tl;dr: Hewlett Packard Enterprise (HPE) has disclosed a critical vulnerability in its AutoPass License Server (APLS), tracked as CVE-2026-23600, allowing remote authentication bypass. This flaw enables unauthenticated users to access sensitive features without valid credentials, affecting APLS versions prior to 9.19. Rated 7.3 on the CVSS v3.1 scale, the vulnerability poses significant risks for exposed servers. HPE advises immediate upgrades to version 9.19 or later and recommends hardening environments by restricting access and monitoring logs for unusual activity. Organizations should act swiftly to mitigate potential exploitation.
↪ https://cyberpress.org/hpe-autopass-vulnerability/
March 2026 Android Update Fixes 129 Vulnerabilities, Including CVE-2026-21385 — tl;dr: Google's March 2026 Android Security Bulletin addresses 129 vulnerabilities, marking the highest monthly total to date. Among these is CVE-2026-21385, a high-severity zero-day affecting Qualcomm's Display and Graphics component, which is currently exploited in the wild. The update includes critical fixes for remote code execution and denial-of-service vulnerabilities, impacting core Android and hardware-specific components. Device manufacturers are urged to implement the updates promptly to mitigate risks of exploitation. Users should ensure Google Play Protect is enabled for ongoing app security.
↪ https://cyberpress.org/android-security-update-fixes-129-vulnerabilities/
Google Confirms Exploitation of CVE-2026-21385 in Qualcomm Android Component — tl;dr: Google has confirmed that CVE-2026-21385, a high-severity buffer over-read vulnerability in a Qualcomm Android component, is being exploited in the wild. This flaw, which has a CVSS score of 7.8, allows for memory corruption due to insufficient buffer space checks. Discovered by Google's Android Security team, the vulnerability was reported on December 18, 2025, and patches were issued on February 2, 2026. Users are urged to update their devices promptly, as the U.S. CISA has added this vulnerability to its Known Exploited Vulnerabilities catalog, mandating fixes by March 24, 2026.
↪ https://thehackernews.com/2026/03/google-confirms-cve-2026-21385-in.html