Cybersecurity

Multiple Vulnerabilities in Helm Allow Arbitrary Code Execution

CERT-Bund published security advisory WID-SEC-2026-1048 disclosing multiple vulnerabilities in Helm (Kubernetes package manager) with a CVSS Base Score of 8.6 (high). Affected versions include helm <4.1.4 and helm <3.20.2. An attacker can exploit these vulnerabilities to manipulate files, bypass security measures, and potentially execute arbitrary code.

Red Hat Products Multiple Vulnerabilities Allow Admin Privilege Escalation

CERT-Bund issued security advisory WID-SEC-2026-1033 warning of multiple vulnerabilities in Red Hat products including Ansible Automation Platform, Enterprise Linux, OpenShift, and Process Automation Manager. Local attackers can exploit these flaws to gain administrator privileges. CVSS base score is 6.4 (medium) with temporal score of 5.9. No remote attack vector exists.

Adobe Acrobat Reader Remote Code Execution Vulnerability CVE-2026-1047

CERT-Bund issued a critical security advisory for Adobe Acrobat Reader vulnerability CVE-2026-1047 with CVSS Base Score of 9.6. The flaw allows remote, unauthenticated attackers to execute arbitrary code and gain full administrative control of affected systems running Windows, UNIX, and other operating systems. Adobe Acrobat Reader versions up to and including 26.001.21367 are affected.

Checkmk Multiple Vulnerabilities Allow Remote Attackers Unspecified Impacts

CERT-Bund issued security advisory WID-SEC-2026-1050 regarding multiple vulnerabilities in Checkmk IT monitoring software. Affected versions include those prior to 2.6.0b1, 2.5.0b4, 2.4.0p26, and 2.3.0p47. An authenticated remote attacker can exploit these vulnerabilities for unspecified impacts. CVSS Base Score is 6.3 (medium) with CVSS Temporal Score of 5.5.

Linux Kernel Vulnerability Allows Physical Access Attacks

CERT-Bund issued security advisory WID-SEC-2026-1049 warning of a vulnerability in the Linux kernel affecting versions prior to 6.1.167, 6.6.130, 6.12.78, 6.18.19, 6.19.9, and 7.0-rc4. Attackers with physical access can exploit the flaw to cause denial of service, execute arbitrary code, or disclose information. The CVSS Base Score is 6.8 (medium). Remote attack is not possible, and mitigations are available.

Security Flaw in Dell EMC Isilon, CVSS 8.8

Security Flaw in Dell EMC Isilon, CVSS 8.8

Coast Guard Cutter Escanaba Seizes $33.9M Cocaine in Eastern Pacific

DHS announced that U.S. Coast Guard Cutter Escanaba seized 4,510 pounds of cocaine valued at $33.9 million during a routine patrol in the Eastern Pacific Ocean on Easter Sunday. The crew intercepted a suspected narco-terrorism vessel off the coast of Manta, Ecuador, recovering the contraband using a helicopter aircrew and over-the-horizon cutter pursuit boat.

Trump Administration Welcomes Angel Families to D.C. to Mark One-Year Re-Opening of VOICE Office

DHS announced the one-year anniversary of the re-opening of the Victims of Immigration Crime Engagement (VOICE) Office. ICE welcomed Angel Families to Washington, D.C. to commemorate the milestone. The VOICE Office, originally created during the first Trump Administration and closed by the Biden Administration, provides support services to victims of alien crime, including immigration enforcement updates and custody status notifications for criminal aliens.

ICE Requests Missouri Not Release Illegal Alien Accused of Murdering Teen

DHS announced that ICE issued an arrest detainer for Yefry Archaga-Elvir, an illegal alien from Honduras accused of murdering 15-year-old Miles Young in Greene County, Missouri on March 12, 2026. ICE is formally requesting Missouri authorities not to release the individual and to maintain custody pending federal immigration proceedings.

ICE Arrests Criminal Illegal Aliens Convicted of Child Abuse, Assault, and Robbery

ICE announced arrests of criminal illegal aliens convicted of injury to a child, assault with a semiautomatic firearm, aggravated assault with a deadly weapon, robbery, and other crimes. The announcement coincides with the one-year anniversary of the reopening of the VOICE Office, which provides resources to victims of crimes with an immigration nexus.