Welcome to the ONSEC Cyber Daily for March 13, 2026, where today's digital battleground is fraught with vulnerabilities and patches. Our spotlight shines on a critical Splunk RCE vulnerability that allows attackers to execute arbitrary shell commands, posing a significant threat to users worldwide. As cybercriminals relentlessly scan for weaknesses, over 24,000 systems are exposed due to a critical n8n vulnerability, while Veeam and Microsoft rush to patch severe flaws that could lead to remote code execution. Meanwhile, Apple issues emergency updates to protect older devices from the notorious Coruna exploits. In a world where every click could be a potential breach, staying informed is your best defense. Dive into today's stories to arm yourself against the ever-evolving cyber threats.

Exploits Alert

1. Splunk RCE Vulnerability Allows Attackers to Execute Arbitrary Shell Commands: A high-severity vulnerability in Splunk has been identified, allowing attackers to execute arbitrary shell commands. This exploit poses a significant threat to systems using Splunk, and users are strongly advised to apply the necessary patches immediately to mitigate potential risks. Source
2. LevelBlue Expands Exposure Management for MSSPs and MSPs Through Tenable Integration: LevelBlue has enhanced its exposure management capabilities for Managed Security Service Providers (MSSPs) and Managed Service Providers (MSPs) by integrating with Tenable. This integration aims to provide high-accuracy vulnerability management, helping organizations better protect against cyber threats. Source
3. Critical n8n Vulnerability Leaves Over 24,000 Systems Exposed: A critical vulnerability in n8n has left over 24,000 systems exposed to potential cyber attacks. Cybercriminals are actively scanning for this vulnerability, making it crucial for users to secure their systems by applying the recommended security updates. Source
4. Attackers Exploit FortiGate Devices to Access Sensitive Network Info: A new exploit targeting FortiGate devices has been discovered, allowing unauthorized access to sensitive network information. Fortinet has released patches to address these vulnerabilities, and users are urged to update their systems promptly to safeguard their networks. Source
5. HPE Warns of Critical AOS-CX Flaw Allowing Admin Password Resets: Hewlett Packard Enterprise (HPE) has issued a warning about a critical flaw in AOS-CX that could allow attackers to reset admin passwords. This vulnerability poses a significant risk, and HPE recommends immediate patching to prevent unauthorized access. Source

Vulnerabilities & Patches

1. Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution: Veeam has addressed seven critical vulnerabilities in its Backup & Replication software, notably CVE-2026-21666, which allows an authenticated domain user to execute remote code on the Backup Server. This patch is crucial to prevent potential exploitation and ensure the security of backup systems. Source: The Hacker News.
2. If You Have One of These Older Apple Devices, Update It ASAP: Apple has released updates for older devices running iOS 15.8.7/16.7.15 and iPadOS to patch a kernel vulnerability, CVE-2023-41974. This update is essential for maintaining device security against potential exploits targeting these older models. Source: Lifehacker.
3. Critical Zero-Click Flaw in n8n Allows Full Server Compromise: A critical zero-click vulnerability, CVE-2026-27577, has been identified in n8n, affecting both cloud and self-hosted instances. This flaw allows attackers to compromise servers fully, highlighting the need for immediate patching to protect sensitive data. Source: Infosecurity Magazine.
4. MediaTek Android Security Vulnerability CVE-2026-20435 Enables Data Theft Within 45 Seconds: MediaTek has released a patch for a severe Android vulnerability, CVE-2026-20435, which can be exploited to bypass lock screens and steal data within seconds. Device manufacturers are urged to implement this patch promptly to safeguard user data. Source: TechNet Books.
5. Apple Patches Coruna Exploit Kit Flaws for Older iOS Versions: Apple has issued emergency updates for older iOS versions to fix vulnerabilities linked to the Coruna exploit kit, including CVE-2023-41974. These patches are vital for protecting older devices from potential attacks leveraging these flaws. Source: Malwarebytes.

Podcasts

1. Meta buys out Moltbook, and understanding insider threats with special guests: This podcast episode delves into Meta's acquisition of Moltbook and explores the complexities of insider threats with insights from experts at Clayton Utz. The discussion highlights the strategic implications of the acquisition and offers practical advice on mitigating insider risks. Source
2. Iran Cyber Retaliation, OpenAI Defense Deal Scrutiny, FBI Wiretap Network | Ep. 55: This episode covers Iran's cyber retaliation strategies, the scrutiny surrounding OpenAI's defense deals, and the FBI's wiretap network. The podcast provides a comprehensive analysis of these topics, offering listeners a deep dive into current geopolitical cyber issues. Source
3. Legendary Hacker Matt Suiche on Cyberwar in the Age of AI | Odd Lots: In this engaging episode, legendary hacker Matt Suiche discusses the evolving landscape of cyberwarfare in the age of artificial intelligence. The conversation touches on the challenges and opportunities AI presents in cybersecurity, providing valuable insights from a renowned expert. Source
4. ProteQC® Co-Founder Darren Bender Presents 'Post-Quantum Negligence' in PQShield: Darren Bender, co-founder of ProteQC®, discusses the concept of 'Post-Quantum Negligence' in this podcast episode. The discussion focuses on the intersection of quantum physics, cybersecurity, and law, highlighting the importance of preparing for quantum computing's impact on security. Source
5. The MC-55A Peregrine and the future of ADF airborne reconnaissance: This episode explores the future of ADF airborne reconnaissance with a focus on the MC-55A Peregrine. The podcast discusses the technological advancements and strategic importance of this aircraft in modern military operations. Source

Final Words

As we wrap up today's edition of ONSEC Cyber Daily, it's clear that the digital landscape is as dynamic as ever. From the critical Splunk RCE vulnerability that allows attackers to execute arbitrary shell commands, to the relentless efforts of companies like LevelBlue and Tenable in expanding exposure management, the cyber world is in constant motion. We've also seen how vulnerabilities in systems like n8n and Veeam can leave thousands exposed, underscoring the importance of staying informed and vigilant. In this ever-evolving cyber battlefield, knowledge is your best defense. By keeping up with the latest updates and patches, like those from Apple and Microsoft, you can protect your systems from potential threats. Remember, cybersecurity is not just a personal responsibility but a collective one. Share this newsletter with your friends and colleagues to help them stay informed and secure. Together, we can build a safer digital world. Until tomorrow, stay safe and stay secure!

ONSEC.io | LinkedIn

ONSEC.io | 1,839 followers on LinkedIn. Information security audits and penetration testing by a team of experts with an average experience of more than 7 years | ONSEC.io - is a penetration testing & in-depth security audit company with more than 13 years of experience on the market. Our team has already helped more than 300 companies be aware about possible system's vulnerabilities, including Republic, DMarket, LegionFarm, Parallels, Xsolla, Acronis, Manyсhat, Global Fashion Group and others. Our main goal is to increase the customer security level by finding and fixing security issues as well as improve security awareness inside the company, including developers, DevOps, and other teams to build a sustainable engineering culture with security knowledge.

LinkedIn

x.com

X (formerly Twitter)