A critical security alert highlights four active exploits detected today, specifically targeting vulnerabilities in the Webmin application. Key vulnerabilities include:
1. **CVE-2026-56020**: A critical HTTP header authentication bypass (CVSS 9.2) that allows attackers to impersonate users.
2. **CVE-2026-56021**: An information disclosure risk via regex pattern (CVSS 6.9) allowing unauthenticated access to configuration files.
3. **CVE-2026-56022**: A multi-factor authentication (MFA) bypass (CVSS 6.9).
Webmin has released version 2.641 with patches available to address these issues. No confirmed exploitations have been reported so far. Users are advised to update their systems to the latest version to secure against these vulnerabilities.