Advisories by BGD e-GOV CIRT

Post Image
Critical Vulnerability in n8n (CVE-2026-21858) affects Hosts in Bangladesh
A critical unauthenticated remote code execution (RCE) vulnerability, tracked as CVE-2026- 21858 and dubbed "Ni8mare," has been identified in n8n, an ....
11-Jan-2026 16:00:00
Read Details
Post Image
MongoBleed Vulnerability (CVE-2025-14847) Exposes MongoDB Instances in Bangladesh
A nationwide assessment identified 80 internet-exposed MongoDB database instances in Bangladesh that are improperly secured or misconfigured and runni....
01-Jan-2026 16:00:00
Read Details
Post Image
Critical Remote Code Execution Vulnerability in React Server Components (CVE-2025-55182)
A CVE-2025-55182 is a critical, unauthenticated remote code execution (RCE) in React Server Components (RSC) that can allow attackers to execute arbit....
04-Dec-2025 16:00:00
Read Details
Post Image
BIND 9 DNS Cache Poisoning (CVE-2025-40778)
A high-severity cache-poisoning vulnerability (CVE-2025-40778, CVSS 8.6) in BIND (Berkeley Internet Name Domain) 9 resolvers can allow remote attacker....
03-Nov-2025 16:00:00
Read Details
Post Image
Critical Remote Code Execution Vulnerability in Microsoft WSUS (CVE-2025-59287)
We have identified a critical security vulnerability in Microsoft’s update-management service (WSUS) that, if unpatched, allows an attacker to take fu....
27-Oct-2025 16:00:00
Read Details
Post Image
Critical FreePBX Vulnerability (CVE-2025-57819) Under Active Exploitation
A critical flaw (CVE-2025-57819) in FreePBX versions 15, 16, and 17 enables unauthenticated attackers to perform SQL injection and remote code executi....
01-Sep-2025 16:00:00
Read Details