$ today-brief --date 2026-06-15
[VERDICT: GUARDED]

No review-now item passed evidence gates. Treat today as monitor/background unless new exploitation evidence arrives. Highest-scored item: Capsule is a multi-tenancy and policy-based framework for Kubernetes. The Cap….

Monitor

These are notable but currently lack active-exploitation evidence in configured sources.

  • Capsule is a multi-tenancy and policy-based framework for Kubernetes. The Cap… โ€” score 25 โ€” exploit status none โ€” CVE CVE-2026-22872 โ€” flags: no_exploitation_signal โ€” KQL: MDE exposure: devices with CVE-2026-22872. Evidence: nvd.

  • Vibe coders are gonna vibe code: How CISOs are tackling code sprawl โ€” score 25 โ€” exploit status none โ€” flags: no_primary_source, no_exploitation_signal. Evidence: Vibe coders are gonna vibe code: How CISOs are tackling code sprawl.

  • Chinese hackers breach REDCap servers, steal medical research โ€” score 25 โ€” exploit status none โ€” flags: no_primary_source, no_exploitation_signal. Evidence: Chinese hackers breach REDCap servers, steal medical research.

Background

  • โšก Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More โ€” score 78 โ€” exploit status poc โ€” flags: no_primary_source, exploitation_claim_downgraded, critic_downgraded โ€” KQL: MDE edge/service exploitation telemetry triage. Evidence: โšก Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More.

  • FlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message… โ€” score 25 โ€” exploit status none โ€” CVE CVE-2026-37230 โ€” flags: no_exploitation_signal โ€” KQL: MDE exposure: devices with CVE-2026-37230. Evidence: nvd.

  • FlexRIC v2.0.0 contains a reachable assertion in e2ap_create_pdu() triggered … โ€” score 25 โ€” exploit status none โ€” CVE CVE-2026-37229 โ€” flags: no_exploitation_signal โ€” KQL: MDE exposure: devices with CVE-2026-37229. Evidence: nvd.

  • FlexRIC v2.0.0 contains a reachable assertion in e2ap_recv_sctp_msg() (src/li… โ€” score 25 โ€” exploit status none โ€” CVE CVE-2026-37228 โ€” flags: no_exploitation_signal โ€” KQL: MDE exposure: devices with CVE-2026-37228. Evidence: nvd.

  • FlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST… โ€” score 25 โ€” exploit status none โ€” CVE CVE-2026-37226 โ€” flags: no_exploitation_signal โ€” KQL: MDE exposure: devices with CVE-2026-37226. Evidence: nvd.

โ† 2026-06-14: Monitor: No confirmed active exploitation in configured โ€ฆ 2026-06-16: Monitor: No confirmed active exploitation in configured โ€ฆ โ†’ $ history