vulnerability-management

3 posts

The kernel commit lands. Your fleet is exposed.

Linux kernel CVEs publish without distro pre-notice. The exposure window opens at upstream commit, not at advisory. Measure the right number.

May 7, 2026

Article

Your hosting panel is your attack surface

Active cPanel exploitation is a control plane compromise. The boundary failed before the login form. Operator briefing on what that means.

May 2, 2026

Article

A CVE number, a label, and nothing else

CVE-2026-31431 Copy Fail is a published identifier. Mechanism, scope, and patch status are not confirmed. Treat it as a pointer, not a flaw description.

May 1, 2026