Advisory Week

Week 15, 2026

CISA adds 8 new KEVs - notably Adobe Acrobat, Microsoft Office and Apache ActiveMQ. Adobe releases patches for Acrobat, Reader, InDesign, etc. Cisco ISE, ThousandEyes, and Webex face new CVEs.

CISA Known Exploited Vulnerabilities

Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability CVE-2012-1854

Microsoft Windows Link Following Vulnerability CVE-2025-60710

Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability CVE-2023-21529

Microsoft Windows Out-of-Bounds Read Vulnerability CVE-2023-36424

Adobe Acrobat Use-After-Free Vulnerability CVE-2020-9715

Fortinet SQL Injection Vulnerability CVE-2026-21643

Adobe Acrobat and Reader Prototype Pollution Vulnerability CVE-2026-34621

Microsoft Office Remote Code Execution CVE-2009-0238

Microsoft SharePoint Server Improper Input Validation Vulnerability CVE-2026-32201

Apache ActiveMQ Improper Input Validation Vulnerability CVE-2026-34197

The known exploited vulnerabilities list contains vulnerabilities that are known to be actively exploited. They may not be new or recently discovered. Vulnerabilities listed here were added to this list in the past week.

National Cyber Awareness System

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Adds Seven Known Exploited Vulnerabilities to Catalog

Adobe Security Bulletins and Advisories

Prenotification Security Advisory for Adobe Acrobat and Reader  | APSB26-44

Security Update Available for Adobe InDesign | APSB26-32

Security Update Available for Adobe InCopy | APSB26-33

Security updates available for Adobe Experience Manager Screens | APSB26-34

Security Updates Available for Adobe Framemaker | APSB26-36

Security updates available for Adobe Connect | APSB2 APSB26-37

Security updates available for Adobe ColdFusion | APSB26-38

Security Updates Available for Adobe Bridge | APSB26-39

Security updates available for Adobe Photoshop | APSB26-40

Security update available for Adobe DNG Software Development Kit (SDK) | APSB26-41

Security Updates Available for Adobe Illustrator | APSB26-42

Ubuntu Security Notices

Linux kernel (HWE) vulnerabilities: USN-8188-1

Linux kernel (NVIDIA) vulnerabilities: USN-8187-1 / USN-8185-1 / USN-8148-7

Linux kernel (Real-time) vulnerabilities: USN-8186-1 / USN-8184-1 / USN-8177-2

Linux kernel (FIPS) vulnerabilities: USN-8180-2 / USN-8179-2

Linux kernel (GCP) vulnerabilities: USN-8183-1

Rack vulnerabilities: USN-8182-1

ESAPI vulnerabilities: USN-8181-1

oFono vulnerabilities: USN-8178-1

Linux kernel vulnerabilities: USN-8180-1 / USN-8179-1 / USN-8177-1

Linux kernel (Azure) vulnerabilities: USN-8145-5 / USN-8148-6 / USN-8149-3 / USN-8163-2

.NET vulnerabilities: USN-8176-1

FRR vulnerability: USN-8175-1

tar-rs vulnerability: USN-8138-2

Rust vulnerability: USN-8168-2 / USN-8168-1

XML::Parser vulnerabilities: USN-8174-1

polkit vulnerabilities: USN-8173-1

kvmtool vulnerabilities: USN-8172-1

Vim vulnerabilities: USN-8171-1

Corosync vulnerabilities: USN-8170-1

Redis, Lua vulnerabilities: USN-8169-1

xdg-dbus-proxy vulnerability: USN-8167-1

LSN-0119-1: Kernel Live Patch Security Notice

RetroArch vulnerability: USN-8166-1

Red Hat Security Advisory

Red Hat AI Inference Server Model Optimization Tools 3.3.1 (CUDA): RHSA-2026:8748

Red Hat AI Inference Server 3.3.1 (CUDA): RHSA-2026:8746

Red Hat AI Inference Server 3.3.1 (ROCm): RHSA-2026:8747

Important: perl-XML-Parser security update: RHSA-2026:8610 / RHSA-2026:8609 / RHSA-2026:8608 / RHSA-2026:8578 / RHSA-2026:8577 / RHSA-2026:7681 / RHSA-2026:7680

New container image: rhceph-9.0: RHSA-2026:8568

Important: nghttp2 security update: RHSA-2026:8548 / RHSA-2026:8547 / RHSA-2026:8546 / RHSA-2026:8545 / RHSA-2026:8541 / RHSA-2026:8540 / RHSA-2026:8539 / RHSA-2026:8538 / RHSA-2026:7667 / RHSA-2026:7666

Important: libarchive security update: RHSA-2026:8534 / RHSA-2026:8521 / RHSA-2026:8517 / RHSA-2026:8510 / RHSA-2026:8492

Important: Red Hat AMQ Broker 7.14.0 release and security update: RHSA-2026:8509

Technical preview of the satellite/iop-vulnerability-frontend-rhel9 container image: RHSA-2026:8501

General availability of the satellite/iop-host-inventory-frontend-rhel9 container image: RHSA-2026:8500

General availability of the satellite/iop-advisor-frontend-rhel9 container image: RHSA-2026:8499

General availability of the satellite/iop-remediations-rhel9 container image: RHSA-2026:8498

Kiali 2.22.2 for Red Hat OpenShift Service Mesh 3.3: RHSA-2026:8493

Kiali 2.17.6 for Red Hat OpenShift Service Mesh 3.2: RHSA-2026:8491

Kiali 2.11.9 for Red Hat OpenShift Service Mesh 3.1: RHSA-2026:8490

Kiali 2.4.15 for Red Hat OpenShift Service Mesh 3.0: RHSA-2026:8484

Kiali 1.73.29 for Red Hat OpenShift Service Mesh 2.6: RHSA-2026:8483

Important: .NET 9.0 security update: RHSA-2026:8475 / RHSA-2026:8472

Important: .NET 10.0 security update: RHSA-2026:8473

Important: .NET 8.0 security update: RHSA-2026:8470 / RHSA-2026:8469 / RHSA-2026:8468

Important: thunderbird security update: RHSA-2026:8459 / RHSA-2026:8315 / RHSA-2026:8290 / RHSA-2026:8289 / RHSA-2026:8288 / RHSA-2026:8287 / RHSA-2026:8285 / RHSA-2026:8284

Important: freerdp security update: RHSA-2026:8458 / RHSA-2026:8457

Important: osbuild-composer security update: RHSA-2026:8456

Important: OpenShift Container Platform 4.19.28 bug fix and security update: RHSA-2026:7243

RHTAS 1.4 - GA Release of Model Transparency: RHSA-2026:8437

Important: rhc security update: RHSA-2026:8434 / RHSA-2026:8324 / RHSA-2026:7676 / RHSA-2026:7674 / RHSA-2026:7669 / RHSA-2026:7665

Important: OpenShift Container Platform 4.13.65 bug fix and security update: RHSA-2026:7239

Moderate: OpenShift Container Platform 4.13.65 packages and security update: RHSA-2026:7238

OpenShift Container Platform 4.19.28 bug fix and security update: RHSA-2026:7249 / RHSA-2026:7243

OpenShift Compliance Operator bug fix and enhancement update: RHSA-2026:8433

OpenShift Container Platform 4.13.65 bug fix and security update: RHSA-2026:7252 / RHSA-2026:7239

Important: firefox security update: RHSA-2026:8427 / RHSA-2026:8052 / RHSA-2026:7858 / RHSA-2026:7845 / RHSA-2026:7843 / RHSA-2026:7842 / RHSA-2026:7841 / RHSA-2026:7840 / RHSA-2026:7839 / RHSA-2026:7672 / RHSA-2026:7671

OpenShift Container Platform 4.13.65 security and extras update: RHSA-2026:7253

OpenShift Container Platform 4.19.28 security and extras update: RHSA-2026:7250

Important: bind security update: RHSA-2026:8352 / RHSA-2026:8312 / RHSA-2026:8075

OpenShift Container Platform 4.21.10 bug fix and security update: RHSA-2026:7245

Moderate: kernel security update: RHSA-2026:8342

Important: nodejs:20 security update: RHSA-2026:8339 / RHSA-2026:7896

Red Hat Web Terminal Operator 1.13.0 release.: RHSA-2026:8338

Red Hat Web Terminal Operator 1.14.0 release.: RHSA-2026:8337

Important: buildah, crun, podman, runc, and skopeo security update: RHSA-2026:8325

Critical: rhc security update: RHSA-2026:8322

Important: squid:4 security update: RHSA-2026:8317

Important: delve security update: RHSA-2026:8314

Important: perl-YAML-Syck security update: RHSA-2026:8311

Important: vim security update: RHSA-2026:8259 / RHSA-2026:7711

Important: Red Hat Advanced Cluster Management for Kubernetes v2.13.6 security update: RHSA-2026:8229

Important: multicluster engine for Kubernetes v2.8.5 security update: RHSA-2026:8218

Red Hat Web Terminal Operator 1.15.0 release.: RHSA-2026:8167

Important: Red Hat Build of Apache Camel 4.14 for Quarkus 3.27 update is now available (RHBQ 3.27.3.GA): RHSA-2026:8159

Important: Red Hat build of Quarkus 3.20.6 release and security update: RHSA-2026:7109

Important: bind9.16 security update: RHSA-2026:8155

Important: Submariner v0.22 security fixes and container updates: RHSA-2026:8151

Important: Red Hat build of Quarkus 3.27.3 release and security update: RHSA-2026:7380

Moderate: pcs security update: RHSA-2026:8093

Important: golang-github-openprinting-ipp-usb security update: RHSA-2026:7992

Important: nodejs:22 security update: RHSA-2026:7983

Important: HawtIO 4.3.1 for Red Hat build of Apache Camel 4 Release and security update.: RHSA-2026:7942

Important: bind9.18 security update: RHSA-2026:7915

Important: golang security update: RHSA-2026:7883 / RHSA-2026:7833

Important: go-toolset:rhel8 security update: RHSA-2026:7879 / RHSA-2026:7878 / RHSA-2026:7877 / RHSA-2026:7876

Important: podman security update: RHSA-2026:7854

Important: gstreamer-plugins-base and gstreamer-plugins-good security update: RHSA-2026:7850

Important: openexr security update: RHSA-2026:7682 / RHSA-2026:7678

Important: nodejs24 security update: RHSA-2026:7675

Cisco Security Advisory

Cisco Identity Services Engine Remote Code Execution and Path Traversal Vulnerabilities

Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability

Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities

Cisco ThousandEyes Enterprise Agent Arbitrary File Overwrite Vulnerability

Cisco Unity Connection Arbitrary File Download Vulnerabilities

Cisco Unity Connection Cross-Site Scripting, Open Redirect, and SQL Injection Vulnerabilities

Cisco Webex Contact Center Cross-Site Scripting Vulnerability

Cisco Secure Web Appliance Authentication Bypass Vulnerability

Cisco Identity Services Engine Remote Code Execution Vulnerabilities

Cisco Webex Services Certificate Validation Vulnerability

Microsoft Security

Microsoft April 2026 Security Update Guide

Chromium: CVE-2026-6307 Type Confusion in Turbofan

Chromium: CVE-2026-6306 Heap buffer overflow in PDFium

Chromium: CVE-2026-6305 Heap buffer overflow in PDFium

Chromium: CVE-2026-6304 Use after free in Graphite

Chromium: CVE-2026-6303 Use after free in Codecs

Chromium: CVE-2026-6302 Use after free in Video

Chromium: CVE-2026-6301 Type Confusion in Turbofan

Chromium: CVE-2026-6300 Use after free in CSS

Chromium: CVE-2026-6299 Use after free in Prerender

Chromium: CVE-2026-6298 Heap buffer overflow in Skia

Chromium: CVE-2026-6297 Use after free in Proxy

Chromium: CVE-2026-6296 Heap buffer overflow in ANGLE

Chromium: CVE-2026-6364 Out of bounds read in Skia

Chromium: CVE-2026-6363 Type Confusion in V8

Chromium: CVE-2026-6362 Use after free in Codecs

Chromium: CVE-2026-6361 Heap buffer overflow in PDFium

Chromium: CVE-2026-6360 Use after free in FileSystem

Chromium: CVE-2026-6359 Use after free in Video

Chromium: CVE-2026-6318 Use after free in Codecs

Chromium: CVE-2026-6317 Use after free in Cast

Chromium: CVE-2026-6316 Use after free in Forms

Chromium: CVE-2026-6314 Out of bounds write in GPU

Chromium: CVE-2026-6313 Insufficient policy enforcement in CORS

Chromium: CVE-2026-6312 Insufficient policy enforcement in Passwords

Chromium: CVE-2026-6311 Uninitialized Use in Accessibility

Chromium: CVE-2026-6310 Use after free in Dawn

Chromium: CVE-2026-6309 Use after free in Viz

Chromium: CVE-2026-6308 Out of bounds read in Media

CVE-2026-40179 Prometheus: Stored XSS via metric names and label values in web UI tooltips and metrics explorer

CVE-2025-14821 Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows

CVE-2026-39956 jq: Missing runtime type checks for _strindices lead to crash and limited memory disclosure

CVE-2026-35199 SymCrypt SymCryptXmssSign function - Heap overflow via 64->32-bit leaf-count truncation

CVE-2026-35469 SpdyStream: DOS on CRI

CVE-2026-40164 jq: Algorithmic complexity DoS via hardcoded MurmurHash3 seed

CVE-2026-39979 jq: Out-of-Bounds Read in jv_parse_sized() Error Formatting for Non-NUL-Terminated Counted Buffers

CVE-2026-33948 jq: Embedded-NUL Truncation in CLI JSON Input Path Causes Prefix-Only Validation of Malformed Input

CVE-2026-33947 jq: Unbounded Recursion in jv_setpath(), jv_getpath() and delpaths_sorted()

CVE-2026-32316 jq: Integer overflow in jvp_string_append() allows Heap-based Buffer Overflow

CVE-2026-34601 xmldom: XML injection via unsafe CDATA serialization allows attacker-controlled markup insertion

CVE-2025-30258 In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect usage flags, the user loses the ability to verify signatures made from certain other sig

CVE-2025-62718 Axios has a NO_PROXY Hostname Normalization Bypass Leads to SSRF

CVE-2026-40175 Axios has Unrestricted Cloud Metadata Exfiltration via Header Injection Chain

CVE-2026-34480 Apache Log4j Core: Silent log event loss in XmlLayout due to unescaped XML 1.0 forbidden characters

CVE-2026-34479 Apache Log4j 1 to Log4j 2 bridge: Silent log event loss in Log4j1XmlLayout due to unescaped XML 1.0 forbidden characters

CVE-2026-34481 Apache Log4j JSON Template Layout: Improper serialization of non-finite floating-point values in JsonTemplateLayout

CVE-2026-35201 Discount has an Out-of-bounds Read in rdiscount

CVE-2026-1502 HTTP client proxy tunnel headers not validated for CR/LF

CVE-2026-5446 wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse

CVE-2026-5392 wolfSSL heap OOB read in PKCS7 SignedData streaming

CVE-2026-5263 URI nameConstraints not enforced in ConfirmNameConstraints()

CVE-2026-5460 Heap Use-After-Free in PQC Hybrid KeyShare Error Cleanup in wolfSSL TLS 1.3

CVE-2026-5772 MatchDomainName 1-Byte Stack Buffer Over-Read in Hostname Validation

CVE-2026-5447 Heap buffer overflow in CertFromX509() via AuthorityKeyIdentifier

CVE-2026-5778 Integer underflow leads to out-of-bounds access in sniffer ChaCha decrypt path.

CVE-2026-5188 Integer underflow in X.509 SAN parsing in wolfSSL

CVE-2026-5295 Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_DecryptOri() via Oversized OID

CVE-2026-5264 DTLS 1.3 ACK heap buffer overflow

CVE-2026-5503 out-of-bounds write in TLSX_EchChangeSNI via attacker-controlled publicName

CVE-2026-5479 wolfSSL EVP ChaCha20-Poly1305 AEAD authentication tag

CVE-2026-5477 Prefix-substitution forgery via integer overflow in wolfCrypt CMAC

CVE-2026-5448 1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBefore

CVE-2026-5507 Session Cache Restore — Arbitrary Free via Deserialized Pointer

CVE-2026-5501 Improper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf Certificates

CVE-2026-5194 wolfSSL ECDSA Certificate Verification

CVE-2026-5504 PKCS7 CBC Padding Oracle — Plaintext Recovery

CVE-2026-5500 Improper Validation of AES-GCM Authentication Tag Length in PKCS#7 Envelope Allows Authentication Bypass

CVE-2026-5393 OOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL_ALG_CERTS

CVE-2026-5466 wc_VerifyEccsiHash missing sanity check

CVE-2026-20930 Windows Management Services Elevation of Privilege Vulnerability

CVE-2026-25250 MITRE: CVE-2026-25250 Secure Boot disable Eazy Fix

CVE-2026-23653 GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability

CVE-2026-25184 Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability

CVE-2026-20945 Microsoft SharePoint Server Spoofing Vulnerability

CVE-2026-23670 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

CVE-2026-26149 Microsoft Power Apps Security Feature Bypass

CVE-2026-26151 Remote Desktop Spoofing Vulnerability

CVE-2026-26154 Windows Server Update Service (WSUS) Tampering Vulnerability

CVE-2026-26155 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

CVE-2026-26160 Remote Desktop Licensing Service Elevation of Privilege Vulnerability

CVE-2026-26161 Windows Sensor Data Service Elevation of Privilege Vulnerability

CVE-2026-26162 Windows OLE Elevation of Privilege Vulnerability

CVE-2026-26165 Windows Shell Elevation of Privilege Vulnerability

CVE-2026-26166 Windows Shell Elevation of Privilege Vulnerability

CVE-2026-26167 Windows Push Notifications Elevation of Privilege Vulnerability

CVE-2026-26174 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

CVE-2026-26175 Windows Boot Manager Security Feature Bypass Vulnerability

CVE-2026-26179 Windows Kernel Elevation of Privilege Vulnerability

CVE-2026-26180 Windows Kernel Elevation of Privilege Vulnerability

CVE-2026-26181 Microsoft Brokering File System Elevation of Privilege Vulnerability

CVE-2026-26183 Remote Access Management service/API (RPC server) Elevation of Privilege Vulnerability

CVE-2026-27906 Windows Hello Security Feature Bypass Vulnerability

CVE-2026-27907 Windows Storage Spaces Controller Elevation of Privilege Vulnerability

CVE-2026-27908 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability

CVE-2026-27915 Windows UPnP Device Host Elevation of Privilege Vulnerability

CVE-2026-27917 Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege Vulnerability

CVE-2026-27918 Windows Shell Elevation of Privilege Vulnerability

CVE-2026-27919 Windows UPnP Device Host Elevation of Privilege Vulnerability

CVE-2026-27921 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability

CVE-2026-27924 Desktop Window Manager Elevation of Privilege Vulnerability

CVE-2026-27926 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2026-27927 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2026-27929 Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability

CVE-2026-27931 Windows GDI Information Disclosure Vulnerability

CVE-2026-32071 Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

CVE-2026-32073 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-32075 Windows UPnP Device Host Elevation of Privilege Vulnerability

CVE-2026-32081 Package Catalog Information Disclosure Vulnerability

CVE-2026-32082 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

CVE-2026-32083 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

CVE-2026-32085 Remote Procedure Call Information Disclosure Vulnerability

CVE-2026-32087 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

CVE-2026-32089 Windows Speech Brokered Api Elevation of Privilege Vulnerability

CVE-2026-32090 Windows Speech Brokered Api Elevation of Privilege Vulnerability

CVE-2026-32093 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

CVE-2026-32152 Desktop Window Manager Elevation of Privilege Vulnerability

CVE-2026-32154 Desktop Window Manager Elevation of Privilege Vulnerability

CVE-2026-32156 Windows UPnP Device Host Remote Code Execution Vulnerability

CVE-2026-32157 Remote Desktop Client Remote Code Execution Vulnerability

CVE-2026-32158 Windows Push Notifications Elevation of Privilege Vulnerability

CVE-2026-32159 Windows Push Notifications Elevation of Privilege Vulnerability

CVE-2026-32160 Windows Push Notifications Elevation of Privilege Vulnerability

CVE-2026-0390 UEFI Secure Boot Security Feature Bypass Vulnerability

CVE-2026-32165 Windows User Interface Core Elevation of Privilege Vulnerability

CVE-2026-32167 SQL Server Elevation of Privilege Vulnerability

CVE-2026-32168 Azure Monitor Agent Elevation of Privilege Vulnerability

CVE-2026-32178 .NET Spoofing Vulnerability

CVE-2026-32181 Connected User Experiences and Telemetry Service Denial of Service Vulnerability

CVE-2026-32183 Windows Snipping Tool Remote Code Execution Vulnerability

CVE-2026-32184 Microsoft High Performance Compute (HPC) Pack Elevation of Privilege Vulnerability

CVE-2026-32188 Microsoft Excel Information Disclosure Vulnerability

CVE-2026-32189 Microsoft Excel Remote Code Execution Vulnerability

CVE-2026-32192 Azure Monitor Agent Elevation of Privilege Vulnerability

CVE-2026-32195 Windows Kernel Elevation of Privilege Vulnerability

CVE-2026-32202 Windows Shell Spoofing Vulnerability

CVE-2026-32215 Windows Kernel Information Disclosure Vulnerability

CVE-2026-32216 Windows Redirected Drive Buffering System Denial of Service Vulnerability

CVE-2026-32217 Windows Kernel Information Disclosure Vulnerability

CVE-2026-32218 Windows Kernel Information Disclosure Vulnerability

CVE-2026-32219 Microsoft Brokering File System Elevation of Privilege Vulnerability

CVE-2026-32220 UEFI Secure Boot Security Feature Bypass Vulnerability

CVE-2026-32221 Windows Graphics Component Remote Code Execution Vulnerability

CVE-2026-32222 Windows Win32k Elevation of Privilege Vulnerability

CVE-2026-32223 Windows USB Printing Stack (usbprint.sys) Elevation of Privilege Vulnerability

CVE-2026-32224 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

CVE-2026-32226 .NET Framework Denial of Service Vulnerability

CVE-2026-33095 Microsoft Word Remote Code Execution Vulnerability

CVE-2026-33096 HTTP.sys Denial of Service Vulnerability

CVE-2026-33098 Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability

CVE-2026-33116 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

CVE-2026-33120 Microsoft SQL Server Remote Code Execution Vulnerability

CVE-2026-33822 Microsoft Word Information Disclosure Vulnerability

CVE-2026-33826 Windows Active Directory Remote Code Execution Vulnerability

CVE-2026-32212 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

CVE-2026-32631 GitHub: CVE-2026-32631 'git clone' from manipulated repositories can leak NTLM hashes

CVE-2026-21637 HackerOne: CVE-2026-21637 TLS PSK/ALPN Callback Exceptions Bypass Error Handlers

CVE-2026-20928 Windows Recovery Environment Security Feature Bypass Vulnerability

CVE-2026-20806 Windows COM Server Information Disclosure Vulnerability

CVE-2026-23657 Microsoft Word Remote Code Execution Vulnerability

CVE-2026-23666 .NET Framework Denial of Service Vulnerability

CVE-2026-26143 Microsoft PowerShell Security Feature Bypass Vulnerability

CVE-2026-26152 Microsoft Cryptographic Services Elevation of Privilege Vulnerability

CVE-2026-26153 Windows Encrypted File System (EFS) Elevation of Privilege Vulnerability

CVE-2026-26156 Windows Hyper-V Remote Code Execution Vulnerability

CVE-2026-26159 Remote Desktop Licensing Service Elevation of Privilege Vulnerability

CVE-2026-26163 Windows Kernel Elevation of Privilege Vulnerability

CVE-2026-26168 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-26169 Windows Kernel Memory Information Disclosure Vulnerability

CVE-2026-26170 PowerShell Elevation of Privilege Vulnerability

CVE-2026-26172 Windows Push Notifications Elevation of Privilege Vulnerability

CVE-2026-26173 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-26176 Windows Client Side Caching driver (csc.sys) Elevation of Privilege Vulnerability

CVE-2026-26177 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-26178 Windows Advanced Rasterization Platform Elevation of Privilege Vulnerability

CVE-2026-26182 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-26184 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2026-27909 Windows Search Service Elevation of Privilege Vulnerability

CVE-2026-27910 Windows Installer Elevation of Privilege Vulnerability

CVE-2026-27911 Windows User Interface Core Elevation of Privilege Vulnerability

CVE-2026-27912 Windows Kerberos Elevation of Privilege Vulnerability

CVE-2026-27913 Windows BitLocker Security Feature Bypass Vulnerability

CVE-2026-27914 Microsoft Management Console Elevation of Privilege Vulnerability

CVE-2026-27916 Windows UPnP Device Host Elevation of Privilege Vulnerability

CVE-2026-27920 Windows UPnP Device Host Elevation of Privilege Vulnerability

CVE-2026-27922 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-27923 Desktop Window Manager Elevation of Privilege Vulnerability

CVE-2026-27925 Windows UPnP Device Host Information Disclosure Vulnerability

CVE-2026-27928 Windows Hello Security Feature Bypass Vulnerability

CVE-2026-27930 Windows GDI Information Disclosure Vulnerability

CVE-2026-32068 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

CVE-2026-32069 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2026-32070 Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2026-32072 Active Directory Spoofing Vulnerability

CVE-2026-32074 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2026-32076 Windows Storage Spaces Controller Elevation of Privilege Vulnerability

CVE-2026-32077 Windows UPnP Device Host Elevation of Privilege Vulnerability

CVE-2026-32078 Windows Projected File System Elevation of Privilege Vulnerability

CVE-2026-32079 Web Account Manager Information Disclosure Vulnerability

CVE-2026-32080 Windows WalletService Elevation of Privilege Vulnerability

CVE-2026-32084 Windows Print Spooler Information Disclosure Vulnerability

CVE-2026-32086 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

CVE-2026-32088 Windows Biometric Service Security Feature Bypass Vulnerability

CVE-2026-32091 Microsoft Brokering File System Elevation of Privilege Vulnerability

CVE-2026-32149 Windows Hyper-V Remote Code Execution Vulnerability

CVE-2026-32150 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

CVE-2026-32151 Windows Shell Information Disclosure Vulnerability

CVE-2026-32153 Windows Speech Runtime Elevation of Privilege Vulnerability

CVE-2026-32155 Desktop Window Manager Elevation of Privilege Vulnerability

CVE-2026-32162 Windows COM Elevation of Privilege Vulnerability

CVE-2026-32163 Windows User Interface Core Elevation of Privilege Vulnerability

CVE-2026-32164 Windows User Interface Core Elevation of Privilege Vulnerability

CVE-2026-32171 Azure Logic Apps Elevation of Privilege Vulnerability

CVE-2026-32176 SQL Server Elevation of Privilege Vulnerability

CVE-2026-32190 Microsoft Office Remote Code Execution Vulnerability

CVE-2026-32196 Windows Admin Center Spoofing Vulnerability

CVE-2026-32197 Microsoft Excel Remote Code Execution Vulnerability

CVE-2026-32198 Microsoft Excel Remote Code Execution Vulnerability

CVE-2026-32199 Microsoft Excel Remote Code Execution Vulnerability

CVE-2026-32200 Microsoft PowerPoint Remote Code Execution Vulnerability

CVE-2026-32201 Microsoft SharePoint Server Spoofing Vulnerability

CVE-2026-26171 .NET Denial of Service Vulnerability

CVE-2026-32203 .NET and Visual Studio Denial of Service Vulnerability

CVE-2026-32225 Windows Shell Security Feature Bypass Vulnerability

CVE-2026-33099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-33100 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2026-33101 Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2026-33103 Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

CVE-2026-33104 Win32k Elevation of Privilege Vulnerability

CVE-2026-33114 Microsoft Word Remote Code Execution Vulnerability

CVE-2026-33115 Microsoft Word Remote Code Execution Vulnerability

CVE-2026-33827 Windows TCP/IP Remote Code Execution Vulnerability

CVE-2026-33824 Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution Vulnerability

CVE-2026-33829 Windows Snipping Tool Spoofing Vulnerability

CVE-2026-32214 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

CVE-2026-33825 Microsoft Defender Elevation of Privilege Vulnerability

CVE-2026-31418 netfilter: ipset: drop logically empty buckets in mtype_del

CVE-2025-11839 GNU Binutils prdbg.c tg_tag_type return value

CVE-2025-1148 GNU Binutils ld ldelfgen.c link_order_scan memory leak

CVE-2025-1147 GNU Binutils nm nm.c internal_strlen buffer overflow

CVE-2026-31428 netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD

CVE-2026-31421 net/sched: cls_fw: fix NULL pointer dereference on shared blocks

CVE-2026-31420 bridge: mrp: reject zero test interval to avoid OOM panic

CVE-2026-31419 net: bonding: fix use-after-free in bond_xmit_broadcast()

CVE-2026-31426 ACPI: EC: clean up handlers on probe failure in acpi_ec_setup()

CVE-2026-31427 netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp

CVE-2026-31414 netfilter: nf_conntrack_expect: use expect->helper

CVE-2026-31422 net/sched: cls_flow: fix NULL pointer dereference on shared blocks

CVE-2026-31417 net/x25: Fix overflow when accumulating packets

CVE-2026-31424 netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP

CVE-2026-31423 net/sched: sch_hfsc: fix divide-by-zero in rtsc_min()

CVE-2026-31416 netfilter: nfnetlink_log: account for netlink header size

CVE-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated Section Bounds in PE Page Hash Calculation

CVE-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read

CVE-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification

CVE-2026-34757 LIBPNG has a yse-after-free in png_set_PLTE, png_set_tRNS and png_set_hIST leading to corrupted chunk data and potential heap information disclosure

CVE-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment

Amazon AWS Security Advisories

CVE-2026-6437 - Mount Option Injection in Amazon EFS CSI Driver

CVE-2026-5747 - Out-of-bounds Write in Firecracker virtio-pci Transport

Issues with AWS Research and Engineering Studio (RES)

Issues with Amazon Athena ODBC Driver

CVE-2026-5429 - Kiro IDE Webview Cross-Site Scripting via Workspace Color Theme

CVE-2026-5190 - AWS C Event Stream Streaming Decoder Stack Buffer Overflow

SAP Security Notes

SAP Security Patch Day - April 2026

Google Chrome Updates

Chrome Releases: Stable Channel Update for ChromeOS / ChromeOS Flex

Chrome Releases: Chrome for Android Update (version 147)

Chrome Releases: Stable Channel Update for Desktop (version 147.0.7727.101)

Chrome Releases: Chrome Stable for iOS Update (version 147)

Drupal Security Advisories

Drupal core - Moderately critical - Cross-site scripting - SA-CORE-2026-003

Drupal core - Moderately critical - Gadget Chain - SA-CORE-2026-002

Drupal core - Critical - Cross-site scripting - SA-CORE-2026-001

Spring Security Advisories

CVE-2026-22740 - Medium - CVE-2026-22740: Spring Framework DoS with Multipart Temp Files in WebFlux

CVE-2026-22741 - Low - CVE-2026-22741: Static resource cache poisoning in Spring MVC and WebFlux

CVE-2026-22745 - Medium - CVE-2026-22745 : Denial of service in static resource handling on Windows platforms

Switch to Daily Mode

We're thrilled to announce the launch of AdvisoryDaily, a once a day version of this newsletter.

Get AdvisoryDaily