- Wormable Windows IKE Service RCE
- SAP BusinessObjects XSS
In this brief
Wormable Windows IKE Service RCE
WhatCVE-2026-33824 is a remote code execution vulnerability in the Windows Internet Key Exchange (IKE) Service Extensions, classified as wormable.
Sourcewww.zerodayinitiative.com
Applies toWindows servers and workstations.
Why it mattersWormable bugs enable rapid, self-propagating attacks across networks.
SAP BusinessObjects XSS
WhatCVE-2026-27683 allows authenticated attackers to inject malicious JavaScript via crafted URLs in SAP BusinessObjects BI, executing in a victim's browser.
Sourcewww.tenable.com
Applies toSAP BusinessObjects Business Intelligence applications.
Why it mattersThis could lead to session hijacking or data theft from authenticated
Is your WordPress site exposed to threats like these?
Arc is an AI security agent that watches your site 24/7 and patches vulnerabilities before attackers find them.
Scan your site free →