Zero-Day

• CVE-2026-2441: Chrome Zero-Day Actively Exploited, Headless Workloads at Risk March 24, 2026

  A memory corruption flaw in the Chromium rendering engine is being actively exploited in the wild, allowing arbitrary code execution via malicious web content -- and it reaches further than your browser.

• Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE March 24, 2026

  CVE-2026-32746 is a CVSS 9.8 buffer overflow in GNU InetUtils telnetd that lets an unauthenticated attacker execute code as root before any login prompt appears. No patch yet. If you're running telnetd exposed to the internet, act now.