matlock.ca // THREAT INTELLIGENCE

295Articles

9Categories

2026-04-14Date

🚨

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe SoftwareThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2026-21643 (CVSS score: 9.1) …

KEVTHEHACKERNEWS.COM — 14 Apr 2026

🚨

How AI is transforming threat detectionArtificial intelligence is rapidly reshaping how security teams detect and hunt cyber threats by helping analyze vast volumes of security data, uncovering subtle signs of malicious activity, and identifying potential attacks faster than traditional tools or human analysts alone. …

KEVCSOONLINE.COM — 14 Apr 2026

🚨

U.S. CISA adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalogU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple, Laravel Livewire…

KEVSECURITYAFFAIRS.COM — 14 Apr 2026

🚨

Claude Mythos: Prepare for your board’s cybersecurity questions about the latest AI model from AnthropicWith the Federal Reserve Chairman meeting with bank CEOs to discuss the security implications of Claude Mythos, you can bet that your board of directors will ask you about the impact of the AI model on your cybersecurity strategy. Here’s how to prepare. Key takeaways Anthro…

KEVTENABLE.COM — 14 Apr 2026

🐛

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

KEVTHEHACKERNEWS.COM — 14 Apr 2026

🐛

CVE-2025-1147 GNU Binutils nm nm.c internal_strlen buffer overflow

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2025-1148 GNU Binutils ld ldelfgen.c link_order_scan memory leak

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2025-11839 GNU Binutils prdbg.c tg_tag_type return value

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-40385

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-40393

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31416 netfilter: nfnetlink_log: account for netlink header size

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31423 net/sched: sch_hfsc: fix divide-by-zero in rtsc_min()

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31424 netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31427 netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31419 net: bonding: fix use-after-free in bond_xmit_broadcast()

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31421 net/sched: cls_fw: fix NULL pointer dereference on shared blocks

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31428 netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31418 netfilter: ipset: drop logically empty buckets in mtype_del

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-40386

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31417 net/x25: Fix overflow when accumulating packets

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31422 net/sched: cls_flow: fix NULL pointer dereference on shared blocks

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31414 netfilter: nf_conntrack_expect: use expect->helper

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31426 ACPI: EC: clean up handlers on probe failure in acpi_ec_setup()

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-31420 bridge: mrp: reject zero test interval to avoid OOM panic

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

Hackers Exploit Critical ShowDoc RCE Flaw in Ongoing Attacks

GBHACKERS.COM — 14 Apr 2026

🐛

CISA Warns Fortinet SQL Injection Flaw Is Being Actively Exploited

KEVGBHACKERS.COM — 14 Apr 2026

🐛

Attackers target unpatched ShowDoc servers via CVE-2025-0520

KEVSECURITYAFFAIRS.COM — 14 Apr 2026

🐛

Critical etcd Vulnerability Allows Unauthorized Access to Sensitive Cluster APIs

GBHACKERS.COM — 14 Apr 2026

🐛

Adobe issues emergency fix for Acrobat Reader flaw exploited in the wild (CVE-2026-34621) - Help Net Security

KEVSH.ITJUST.WORKS — 14 Apr 2026

🐛

New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released

THEHACKERNEWS.COM — 14 Apr 2026

🐛

CVE-2026-20930 Windows Management Services Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-25250 MITRE: CVE-2026-25250 Secure Boot disable Eazy Fix

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-23653 GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-25184 Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-20945 Microsoft SharePoint Server Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-23670 Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26149 Microsoft Power Apps Security Feature Bypass

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26151 Remote Desktop Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26154 Windows Server Update Service (WSUS) Tampering Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26155 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26160 Remote Desktop Licensing Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26161 Windows Sensor Data Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26162 Windows OLE Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26165 Windows Shell Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26166 Windows Shell Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26167 Windows Push Notifications Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26174 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26175 Windows Boot Manager Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26179 Windows Kernel Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26180 Windows Kernel Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26181 Microsoft Brokering File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26183 Remote Access Management service/API (RPC server) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27906 Windows Hello Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27907 Windows Storage Spaces Controller Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27908 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27915 Windows UPnP Device Host Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27917 Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27918 Windows Shell Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27919 Windows UPnP Device Host Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27921 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27924 Desktop Window Manager Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27926 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27927 Windows Projected File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27929 Windows LUA File Virtualization Filter Driver Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27931 Windows GDI Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32071 Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32073 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32075 Windows UPnP Device Host Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32081 Package Catalog Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32082 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32083 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32085 Remote Procedure Call Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32087 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32089 Windows Speech Brokered Api Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32090 Windows Speech Brokered Api Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32093 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32152 Desktop Window Manager Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32154 Desktop Window Manager Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32156 Windows UPnP Device Host Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32157 Remote Desktop Client Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32158 Windows Push Notifications Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32159 Windows Push Notifications Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32160 Windows Push Notifications Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-0390 UEFI Secure Boot Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32165 Windows User Interface Core Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32167 SQL Server Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32168 Azure Monitor Agent Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32178 .NET Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32181 Connected User Experiences and Telemetry Service Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32183 Windows Snipping Tool Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32184 Microsoft High Performance Compute (HPC) Pack Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32188 Microsoft Excel Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32189 Microsoft Excel Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32192 Azure Monitor Agent Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32195 Windows Kernel Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32202 Windows Shell Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32215 Windows Kernel Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32216 Windows Redirected Drive Buffering System Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32217 Windows Kernel Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32218 Windows Kernel Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2023-20585 AMD: CVE-2023-20585 IOMMU Write Buffer Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32219 Microsoft Brokering File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32220 UEFI Secure Boot Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32221 Windows Graphics Component Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32222 Windows Win32k Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32223 Windows USB Printing Stack (usbprint.sys) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32224 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32226 .NET Framework Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33095 Microsoft Word Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33096 HTTP.sys Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33098 Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33116 .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33120 Microsoft SQL Server Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33822 Microsoft Word Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33826 Windows Active Directory Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32212 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32631 GitHub: CVE-2026-32631 'git clone' from manipulated repositories can leak NTLM hashes

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-21637 HackerOne: CVE-2026-21637 TLS PSK/ALPN Callback Exceptions Bypass Error Handlers

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-20928 Windows Recovery Environment Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-20806 Windows COM Server Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-23657 Microsoft Word Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-23666 .NET Framework Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26143 Microsoft PowerShell Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26152 Microsoft Cryptographic Services Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26153 Windows Encrypted File System (EFS) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26156 Windows Hyper-V Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26159 Remote Desktop Licensing Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26163 Windows Kernel Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26168 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26169 Windows Kernel Memory Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26170 PowerShell Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26172 Windows Push Notifications Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26173 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26176 Windows Client Side Caching driver (csc.sys) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26177 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26178 Windows Advanced Rasterization Platform Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26182 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26184 Windows Projected File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27909 Windows Search Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27910 Windows Installer Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27911 Windows User Interface Core Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27912 Windows Kerberos Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27913 Windows BitLocker Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27914 Microsoft Management Console Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27916 Windows UPnP Device Host Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27920 Windows UPnP Device Host Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27922 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27923 Desktop Window Manager Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27925 Windows UPnP Device Host Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27928 Windows Hello Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-27930 Windows GDI Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32068 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32069 Windows Projected File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32070 Windows Common Log File System Driver Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32072 Active Directory Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32074 Windows Projected File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32076 Windows Storage Spaces Controller Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32077 Windows UPnP Device Host Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32078 Windows Projected File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32079 Web Account Manager Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32080 Windows WalletService Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32084 Windows Print Spooler Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32086 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32088 Windows Biometric Service Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32091 Microsoft Brokering File System Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32149 Windows Hyper-V Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32150 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32151 Windows Shell Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32153 Windows Speech Runtime Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32155 Desktop Window Manager Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32162 Windows COM Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32163 Windows User Interface Core Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32164 Windows User Interface Core Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32171 Azure Logic Apps Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32176 SQL Server Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32190 Microsoft Office Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32196 Windows Admin Center Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32197 Microsoft Excel Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32198 Microsoft Excel Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32199 Microsoft Excel Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32200 Microsoft PowerPoint Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32201 Microsoft SharePoint Server Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-26171 .NET Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32203 .NET and Visual Studio Denial of Service Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32225 Windows Shell Security Feature Bypass Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33099 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33100 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33101 Windows Print Spooler Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33103 Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33104 Win32k Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33114 Microsoft Word Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33115 Microsoft Word Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33827 Windows TCP/IP Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33824 Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33829 Windows Snipping Tool Spoofing Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-32214 Universal Plug and Play (upnp.dll) Information Disclosure Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

CVE-2026-33825 Microsoft Defender Elevation of Privilege Vulnerability

MSRC.MICROSOFT.COM — 14 Apr 2026

🐛

Microsoft’s April 2026 Patch Tuesday Addresses 163 CVEs (CVE-2026-32201)

KEVTENABLE.COM — 14 Apr 2026

⚠️

How Hackers Are Thinking About AI

SCHNEIER.COM — 2026-04-14

⚠️

Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report)

THEHACKERNEWS.COM — 14 Apr 2026

⚠️

CISA Alerts on Exploited Microsoft Exchange and Windows CLFS Security Flaws

KEVGBHACKERS.COM — 14 Apr 2026

⚠️

Hackers Exploit Obsidian Plugin to Deploy Cross-Platform Malware

GBHACKERS.COM — 14 Apr 2026

⚠️

Synology SSL VPN Client Vulnerability Enabled Remote Access to Sensitive Files

GBHACKERS.COM — 14 Apr 2026

⚠️

The AI inflection point: What security leaders must do now

CSOONLINE.COM — 14 Apr 2026

⚠️

Securing Software's Journey with the OWASP SPVS - ASW #378

YOUTUBE.COM — 2026-04-14

⚠️

AI Codex Exploits Samsung TV Driver Flaw to Gain Root Access

GBHACKERS.COM — 14 Apr 2026

⚠️

China-linked cloud credential heist runs on typos and SMTP

CSOONLINE.COM — 14 Apr 2026

⚠️

Securing non-human identities: automated revocation, OAuth, and scoped permissions

CLOUDFLARE.COM — 14 Apr 2026

⚠️

US, UK and Canada disrupt $45M crypto theft in Operation Atlantic

SECURITYAFFAIRS.COM — 14 Apr 2026

⚠️

Adobe fixes PDF zero-day security bug that hackers have exploited for months

TECHCRUNCH.COM — 14 Apr 2026

⚠️

AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud

THEHACKERNEWS.COM — 14 Apr 2026

⚠️

EU regulators largely denied access to Anthropic Mythos

CSOONLINE.COM — 14 Apr 2026

⚠️

Kali Forms Vulnerability Enables Remote Code Execution RCE

SH.ITJUST.WORKS — 14 Apr 2026

⚠️

Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game

GITHUB.BLOG — 14 Apr 2026

⚠️

Personal data of 1 million gym members compromised in Basic-Fit security incident

SECURITYAFFAIRS.COM — 14 Apr 2026

⚠️

Adobe Issues Emergency Patch for Critical PDF Flaw Exploited For Months

TECHREPUBLIC.COM — 14 Apr 2026

⚠️

4 questions to ask before outsourcing MDR

CSOONLINE.COM — 14 Apr 2026

⚠️

5 trends defining the future of AI-powered cybersecurity

CSOONLINE.COM — 14 Apr 2026

⚠️

Patch Tuesday, April 2026 Edition

KEVKREBSONSECURITY.COM — 14 Apr 2026

⚠️

Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more - SWN #572

YOUTUBE.COM — 2026-04-14

⚠️

Microsoft’s April Windows update fixes 165 flaws, one exploited zero-day

KEVCYBERINSIDER.COM — 14 Apr 2026

⚠️

Secure AI agent access patterns to AWS resources using Model Context Protocol

AWS.AMAZON.COM — 14 Apr 2026

📋

SAP Patch Day Fixes Critical SQL Injection, DoS, and Code Injection Flaws

GBHACKERS.COM — 14 Apr 2026

📋

Microsoft Patch Tuesday April 2026., (Tue, Apr 14th)

ISC.SANS.EDU — 14 Apr 2026

📋

Microsoft Patch Tuesday for April 2026 - Snort Rule and Prominent Vulnerabilities

TALOSINTELLIGENCE.COM — 14 Apr 2026

📢

Angriffe auf sieben Sicherheitslücken beobachtet – eine ist 14 Jahre alt

HEISE.DE — 2026-04-14

📢

Omnistealer uses the blockchain to steal everything it can

MALWAREBYTES.COM — 14 Apr 2026

📢

Anthropic co-founder confirms the company briefed the Trump administration on Mythos

TECHCRUNCH.COM — 14 Apr 2026

📢

AI Breaks Identity Models

YOUTUBE.COM — 2026-04-14

🔥

Weekly Update 499

TROYHUNT.COM — 14 Apr 2026

🔥

Okta Under Attack as Hackers Skip Phishing for Identity Systems

GBHACKERS.COM — 14 Apr 2026

🔥

Rockstar’s GTA Game Hacked, 78.6 Million Records Published Online

GBHACKERS.COM — 14 Apr 2026

🔥

Is Booking.com compromised ?

SH.ITJUST.WORKS — 14 Apr 2026

🔥

Janela RAT Spreads via Fake MSI Installers, Malicious Extensions

GBHACKERS.COM — 14 Apr 2026

🔥

Booking.com breach sparks scam wave targeting travelers’ bookings

SH.ITJUST.WORKS — 14 Apr 2026

🔥

Mirax Android RAT Hijacks Infected Phones as Residential Proxies

GBHACKERS.COM — 14 Apr 2026

🔥

European Gym giant Basic-Fit data breach affects 1 million members

SH.ITJUST.WORKS — 14 Apr 2026

🔥

Three Rowhammer attacks targeting GDDR6 | Kaspersky official blog

KASPERSKY.COM — 14 Apr 2026

🔥

France builds its own digital future.

THECYBERWIRE.COM — 14 Apr 2026

🕵️

ISC Stormcast For Tuesday, April 14th, 2026 https://isc.sans.edu/podcastdetail/9890, (Tue, Apr 14th)

ISC.SANS.EDU — 14 Apr 2026

🕵️

APT41 Targets Linux Cloud Servers With New Winnti Backdoor

GBHACKERS.COM — 14 Apr 2026

🕵️

Fake Proxifier GitHub Installer Spreads ClipBanker Crypto Malware

GBHACKERS.COM — 14 Apr 2026

🕵️

GUEST ESSAY: Google’s 2029 deadline exposes readiness gap as move to quantum-safe crypto lags

LASTWATCHDOG.COM — 14 Apr 2026

🕵️

Cyber-Inspekteur: Hybride Attacken nehmen weiter zu

CSOONLINE.COM — 14 Apr 2026

🕵️

Someone Bought 30 WordPress Plugins and Planted a Backdoor in All of Them.

INFOSEC.PUB — 14 Apr 2026

🕵️

When Trust Becomes a Weapon: Google Cloud Storage Phishing Deploying Remcos RAT

ANY.RUN — 14 Apr 2026

🕵️

China Clean Tech and the Gulf Energy Shock

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

108 Chrome extensions caught stealing user data and hijacking sessions

CYBERINSIDER.COM — 14 Apr 2026

🕵️

New KnowBe4 Agent Risk Manager Addresses Pervasive AI Agent Risk

KNOWBE4.COM — 14 Apr 2026

🕵️

Mirax Android Trojan Turns Devices Into Residential Proxy Nodes - Infosecurity Magazine

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

Mozilla Criticizes Microsoft for Installing Copilot on Windows Without User Consent

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

Build Real Coding Skills for $43 with Visual Studio 2026 Bundle

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

APT41 Delivers 'Undetectable' Backdoor to Steal Cloud Credentials

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

PlugX USB Worm Hits Multiple Continents via DLL Sideloading

GBHACKERS.COM — 14 Apr 2026

🕵️

Botnet Exposed: Hackers Leave Worker Access and Root Passwords Wide Open

GBHACKERS.COM — 14 Apr 2026

🕵️

Our evaluation of Claude Mythos Preview’s cyber capabilities

PROGRAMMING.DEV — 14 Apr 2026

🕵️

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack - SecurityWeek

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

Fake Ledger app on the Apple App Store steals $9.5 million from 50 users

CYBERINSIDER.COM — 14 Apr 2026

🕵️

SAP Patch Day Fixes Critical SQL Injection, DoS, and Code Injection Flaws

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

Turn Your Expertise Into Published Books Using Advanced AI Technology

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Top 10 Security Isn’t Enough

YOUTUBE.COM — 2026-04-14

🕵️

How exposed is your code? Find out in minutes—for free

GITHUB.BLOG — 14 Apr 2026

🕵️

Upcoming Speaking Engagements

SCHNEIER.COM — 2026-04-14

🕵️

CyberheistNews Vol 16 #15 Anthropic's Mythos Is Not Just a Tool. It's Something You Have to Contain.

KNOWBE4.COM — 14 Apr 2026

🕵️

Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits

GBHACKERS.COM — 14 Apr 2026

🕵️

AI “Watershed Moment” or expensive pen tester? The AISI Mythos Data

PROGRAMMING.DEV — 14 Apr 2026

🕵️

Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report)

SH.ITJUST.WORKS — 14 Apr 2026

🕵️

State-sponsored threats: Different objectives, similar access paths

TALOSINTELLIGENCE.COM — 14 Apr 2026

🕵️

Jeff Bezos-Backed EV Startup Raises $650M to Launch $25K Electric Pickup

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

X Cuts Clickbait Payouts and Exposes a Creator Program Problem

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Microsoft to Retire Outlook Lite, Impacting Millions of Android Users

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

What is AEO SEO? Why Answer Engine Optimization Is the Next Evolution of SEO

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

HubSpot Launches AEO Tool to Help Brands Compete in AI Search

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Motorola Razr 70 Ultra Specs Leak Raises Familiar Concerns

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Toyota Unveils Basketball-Shooting Robot With Vision Tech

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Google $135M Settlement: Millions of Android Users May Qualify for Payout

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Apple’s Mac mini 2026: New Leak Teases M5 Upgrade, Release Timeline

TECHREPUBLIC.COM — 14 Apr 2026

🕵️

Proton boosts Drive performance and expands encrypted workspace features

CYBERINSIDER.COM — 14 Apr 2026

🕵️

Amazon to Acquire Globalstar in $11.6B Bid to Power Future iPhones

TECHREPUBLIC.COM — 14 Apr 2026

🌐

Fake Claude AI installer abuses DLL sideloading to deploy PlugX

SECURITYAFFAIRS.COM — 14 Apr 2026

🌐

CPUID: Angreifer haben über Webseite Malware-Installer verteilt

HEISE.DE — 2026-04-14

🌐

Someone planted backdoors in dozens of WordPress plug-ins used in thousands of websites

TECHCRUNCH.COM — 14 Apr 2026

📡

108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users

THEHACKERNEWS.COM — 14 Apr 2026

📡

FIFA World Cup 2026: More than One-Third of Official Partners Expose the Public to the Risk of Email Fraud

PROOFPOINT.COM — 14 Apr 2026

📡

Phantom in the vault: Obsidian abused to deliver PhantomPulse RAT

ELASTIC.CO — 14 Apr 2026

📡

ChatGPT under scrutiny as Florida investigates campus shooting

MALWAREBYTES.COM — 14 Apr 2026

📡

Sicherheitslücke: wolfSSL-Bibliothek winkt manipulierte Zertifikate durch

HEISE.DE — 2026-04-14

📡

Rockstar Games: Kriminelle Gang veröffentlicht Daten

HEISE.DE — 2026-04-14

📡

Linux 7.0 erschienen – mehr als ein Nummernsprung

HEISE.DE — 2026-04-14

📡

SAP-Patchday: Eine kritische SQL-Injection-Lücke – und 18 weitere

HEISE.DE — 2026-04-14

📡

Scaling MCP adoption: Our reference architecture for simpler, safer and cheaper enterprise deployments of MCP

CLOUDFLARE.COM — 14 Apr 2026

📡

Managed OAuth for Access: make internal apps agent-ready in one click

CLOUDFLARE.COM — 14 Apr 2026

📡

Google Adds Rust-Based DNS Parser into Pixel 10 Modem to Enhance Security

THEHACKERNEWS.COM — 14 Apr 2026

📡

UK gov's Mythos AI tests help separate cybersecurity threat from hype

ARSTECHNICA.COM — 14 Apr 2026