Was hat sich geändert?

Vergleich von 11. Mai 2026 mit dem Vortag 4. Mai 2026.

Neu hinzugekommen

KEV Linux

Copy Fail: What You Need to Know About the Most Severe Linux Threat in Years

Copy Fail ist eine kritische Linux-Kernel-Schwachstelle, die lokale Privileg-Eskalation ermöglicht; für Herstellungsumgebungen mit Ubuntu-basierten Systemen (Hypervisoren, Automation, ICS-Gateways) sofortiges Patch-Management erforderlich.

Kritisch CVSS 7.8 EPSS 4% 5. Mai, 23:00

NEU Bitwarden

CVE-2026-43638

Dies ist eine reine Patch-Erinnerung ohne Hinweise auf aktive Ausnutzung oder gezielte Kampagnen gegen Organisationen.

Mittel CVSS 5.4 EPSS 0% 11. Mai, 18:16

Microsoft

ZDI-26-276: Microsoft Windows Secure Kernel Double Free Local Privilege Escalation Vulnerability

Lokale Privilege-Escalation im Windows Secure Kernel mit CVSS 7.5 erfordert bereits code-execution-Fähigkeit; relevant für segmentierte Umgebungen (VMware ESXi Host-Sicherheit, AD-gebundene Server).

Hoch CVSS 7.8 EPSS 0% 15. Apr., 05:00

Fortinet

ZDI-26-266: Fortinet FortiWeb cat_cgi_paths Out-Of-Bounds Write Remote Code Execution Vulnerability

Authentifizierte RCE in FortiWeb mit CVSS 8.8 , Patch-Status und Verfügbarkeit von Updates für Joel Traber AG kritisch zu prüfen.

Mittel CVSS 7.2 EPSS 0% 15. Apr., 05:00

Microsoft

ZDI-26-277: Microsoft Windows afd.sys Race Condition Local Privilege Escalation Vulnerability

Erfordert lokale Code-Ausführung als Voraussetzung; Relevanz hängt von Kontrolle über Low-Privilege-Prozesse und Netzwerk-Zugang ab , Fokus auf Endpoint-Hardening und AD-Integration wichtig.

Mittel CVSS 7.0 EPSS 0% 15. Apr., 05:00

Microsoft

ZDI-26-278: Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability

Erfordert lokale Code-Ausführung als Voraussetzung; Patch-Status und Exploitierbarkeit sollten intern geprüft werden, um Priorisierung zu bestimmen.

Mittel CVSS 7.0 EPSS 0% 15. Apr., 05:00

Fortinet

FortiGate Edge Intrusions | Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise

Beschreibt eine vollständige Angriffskette (FortiGate Edge → Service-Account-Diebstahl → AD-Kompromittierung), die für Fertigungsbetriebe mit Windows-Server und AD kritisch ist; zeigt dass Netzwerk-Edge-Geräte als Initial-Access-Punkt für tiefe Infrastruktur-Penetration dienen.

Kritisch 10. März, 13:00

Neu als KEV gelistet

Keine Änderungen in dieser Kategorie.

Score-Sprung

Keine Änderungen in dieser Kategorie.

Nicht mehr im Report

153

KEV NEU VMware

100

CVE-2021-22005 — VMware vCenter Server File Upload Vulnerability

Kritisch CVSS 9.8 EPSS 94% 3. Nov., 00:00

KEV NEU VMware

100

CVE-2021-21985 — VMware vCenter Server Improper Input Validation Vulnerability

Kritisch CVSS 9.8 EPSS 94% 3. Nov., 00:00

KEV NEU Microsoft

100

CVE-2021-38647 — Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability

CVE-2021-38647 is a 3-year-old advisory with no mention of active manufacturing-sector campaigns; patch status should be verified in WSUS/Defender logs rather than treated as urgent novel threat.

Kritisch CVSS 9.8 EPSS 94% 3. Nov., 00:00

KEV NEU Fortinet

100

CVE-2024-55591 — Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

CISA KEV listing indicates active exploitation in the wild; prioritize FortiGate/FortiProxy patching before 2025-01-21 deadline to prevent unauthorized administrative access.

Kritisch CVSS 9.8 EPSS 94% 14. Jan., 00:00

KEV NEU VMware

100

CVE-2021-21972 — VMware vCenter Server Remote Code Execution Vulnerability

Kritisch CVSS 9.8 EPSS 94% 3. Nov., 00:00

KEV NEU Microsoft

100

CVE-2021-31166 — Microsoft HTTP Protocol Stack Remote Code Execution Vulnerability

Kritisch CVSS 9.8 EPSS 93% 6. Apr., 00:00

KEV NEU Fortinet

100

CVE-2024-21762 — Fortinet FortiOS Out-of-Bound Write Vulnerability

Kritisch CVSS 9.8 EPSS 93% 9. Feb., 00:00

KEV NEU Fortinet

100

CVE-2023-27997 — Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability

Kritisch CVSS 9.8 EPSS 90% 13. Juni, 00:00

KEV NEU Adobe

100

CVE-2013-3346 — Adobe Reader and Acrobat Memory Corruption Vulnerability

Kritisch CVSS 9.8 EPSS 90% 3. März, 00:00

KEV NEU VMware

100

CVE-2024-38812 — VMware vCenter Server Heap-Based Buffer Overflow Vulnerability

Kritisch CVSS 9.8 EPSS 78% 20. Nov., 00:00

KEV NEU Microsoft

100

CVE-2025-59287 — Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability

WSUS deserialization flaws are historically exploited for lateral movement and supply-chain poisoning to distribute malicious updates across enterprise networks.

Kritisch CVSS 9.8 EPSS 69% 24. Okt., 00:00

KEV NEU Veeam

100

CVE-2022-26501 — Veeam Backup & Replication Remote Code Execution Vulnerability

Kritisch CVSS 9.8 EPSS 67% 13. Dez., 00:00

KEV NEU Fortinet

100

CVE-2024-23113 — Fortinet Multiple Products Format String Vulnerability

Kritisch CVSS 9.8 EPSS 54% 9. Okt., 00:00

KEV NEU Fortinet

CVE-2018-13382 — Fortinet FortiOS and FortiProxy Improper Authorization

Kritisch CVSS 9.1 EPSS 87% 10. Jan., 00:00

KEV NEU Microsoft

CVE-2021-34527 — Microsoft Windows Print Spooler Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 94% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2017-8464 — Microsoft Windows Shell (.lnk) Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 94% 10. Feb., 00:00

KEV NEU Microsoft

CVE-2022-41080 — Microsoft Exchange Server Privilege Escalation Vulnerability

Kritisch CVSS 8.8 EPSS 94% 10. Jan., 00:00

KEV NEU Adobe

CVE-2009-0927 — Adobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability

Kritisch CVSS 8.8 EPSS 93% 25. März, 00:00

KEV NEU Microsoft

CVE-2017-0146 — Microsoft Windows SMB Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 93% 25. März, 00:00

KEV NEU Google

CVE-2018-17463 — Google Chromium V8 Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 92% 8. Juni, 00:00

KEV NEU Adobe

CVE-2009-3953 — Adobe Acrobat and Reader Universal 3D Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 91% 8. Juni, 00:00

KEV NEU Adobe

CVE-2021-21017 — Adobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability

Kritisch CVSS 8.8 EPSS 90% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2011-3402 — Microsoft Windows Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 88% 6. Okt., 00:00

KEV NEU Microsoft

CVE-2019-0541 — Microsoft MSHTML Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 83% 3. Nov., 00:00

KEV NEU Google

CVE-2021-37975 — Google Chromium V8 Use-After-Free Vulnerability

Kritisch CVSS 8.8 EPSS 63% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2025-49704 — Microsoft SharePoint Code Injection Vulnerability

Alert emphasizes decommissioning EOL/EOS SharePoint Server instances rather than patching; suggests vulnerability is actively exploited against public-facing legacy deployments.

Kritisch CVSS 8.8 EPSS 60% 22. Juli, 00:00

KEV NEU Microsoft

CVE-2016-7256 — Microsoft Windows Open Type Font Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 56% 25. Mai, 00:00

KEV NEU Google

CVE-2023-4762 — Google Chromium V8 Type Confusion Vulnerability

Kritisch CVSS 8.8 EPSS 56% 6. Feb., 00:00

KEV NEU Microsoft

CVE-2025-33053 — Microsoft Windows External Control of File Name or Path Vulnerability

CISA KEV listing confirms active exploitation in the wild; July 1, 2025 deadline suggests imminent weaponization—prioritize patching Windows Server infrastructure ahead of deadline.

Kritisch CVSS 8.8 EPSS 55% 10. Juni, 00:00

KEV NEU Fortinet

CVE-2020-12812 — Fortinet FortiOS SSL VPN Improper Authentication Vulnerability

Kritisch CVSS 9.8 EPSS 47% 3. Nov., 00:00

KEV NEU Fortinet

CVE-2026-35616 — Fortinet FortiClient EMS Improper Access Control Vulnerability

Kritisch CVSS 9.8 EPSS 41% 6. Apr., 00:00

KEV NEU Fortinet

CVE-2026-24858 — Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability

Kritisch CVSS 9.8 EPSS 5% 27. Jan., 00:00

KEV NEU Google

CVE-2021-37973 — Google Chromium Portals Use-After-Free Vulnerability

Kritisch CVSS 9.6 EPSS 11% 3. Nov., 00:00

KEV NEU Google

CVE-2022-4135 — Google Chromium GPU Heap Buffer Overflow Vulnerability

Kritisch CVSS 9.6 EPSS 0% 28. Nov., 00:00

KEV NEU VMware

CVE-2025-22224 — VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

CISA KEV listing signals imminent active exploitation; race condition in ESXi could enable privilege escalation or VM escape if weaponized, requiring immediate patching despite mitigation availability.

Kritisch CVSS 9.3 EPSS 47% 4. März, 00:00

KEV NEU Microsoft

CVE-2017-0148 — Microsoft SMBv1 Server Remote Code Execution Vulnerability

Kritisch CVSS 8.1 EPSS 94% 6. Apr., 00:00

KEV NEU VMware

CVE-2020-4006 — Multiple VMware Products Command Injection Vulnerability

Kritisch CVSS 9.1 EPSS 13% 3. Nov., 00:00

KEV NEU Microsoft Hafnium (APT40)

CVE-2022-41082 — Microsoft Exchange Server Remote Code Execution Vulnerability

This 2022 CVE was actively exploited by Hafnium/APT40 (China-linked) against European manufacturing and critical infrastructure; relevant for DACH firms even without Exchange if mail gateway or hybrid cloud email is present.

Kritisch CVSS 8.0 EPSS 91% 30. Sept., 00:00

KEV NEU Microsoft

CVE-2017-11882 — Microsoft Office Memory Corruption Vulnerability

Kritisch CVSS 7.8 EPSS 94% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2017-0261 — Microsoft Office Use-After-Free Vulnerability

Kritisch CVSS 7.8 EPSS 93% 3. März, 00:00

KEV NEU Microsoft

CVE-2021-40449 — Microsoft Windows Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 92% 17. Nov., 00:00

KEV NEU Microsoft

CVE-2016-0099 — Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 90% 3. März, 00:00

KEV NEU Microsoft

CVE-2021-1732 — Microsoft Win32k Privilege Escalation Vulnerability

This is a 2021 vulnerability with a patch deadline 3+ years in the past; it adds no novel intelligence beyond standard patch management and likely indicates stale alert feeds.

Kritisch CVSS 7.8 EPSS 89% 3. Nov., 00:00

KEV NEU Adobe

CVE-2013-0641 — Adobe Reader Buffer Overflow Vulnerability

Kritisch CVSS 7.8 EPSS 88% 3. März, 00:00

KEV NEU Microsoft

CVE-2024-49138 — Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability

Kritisch CVSS 7.8 EPSS 85% 10. Dez., 00:00

KEV NEU Microsoft

CVE-2014-4113 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 83% 4. Mai, 00:00

KEV NEU Microsoft

CVE-2019-0841 — Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 83% 15. März, 00:00

KEV NEU Microsoft

CVE-2025-21333 — Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability

Kritisch CVSS 7.8 EPSS 82% 14. Jan., 00:00

KEV NEU Microsoft

CVE-2020-1054 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 82% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2018-8453 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 81% 21. Jan., 00:00

KEV NEU Adobe

CVE-2023-21608 — Adobe Acrobat and Reader Use-After-Free Vulnerability

Kritisch CVSS 7.8 EPSS 79% 10. Okt., 00:00

KEV NEU Microsoft

CVE-2021-1647 — Microsoft Defender Remote Code Execution Vulnerability

Kritisch CVSS 7.8 EPSS 77% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2018-8440 — Microsoft Windows Privilege Escalation Vulnerability

This is a stale patch reminder from 2022; verify if systems have already been patched to Windows Server 2022/2019 current baselines.

Kritisch CVSS 7.8 EPSS 75% 28. März, 00:00

KEV NEU Microsoft HAFNIUM

CVE-2021-26858 — Microsoft Exchange Server Remote Code Execution Vulnerability

This CVE (ProxyLogon) was actively exploited by state-sponsored actors (HAFNIUM/China) and is already covered by BSI/CISA advisories; news reminder adds no new intelligence beyond patch guidance.

Kritisch CVSS 7.8 EPSS 74% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2010-0232 — Microsoft Windows Kernel Exception Handler Vulnerability

Kritisch CVSS 7.8 EPSS 74% 3. März, 00:00

KEV NEU Microsoft

CVE-2015-1642 — Microsoft Office Memory Corruption Vulnerability

Kritisch CVSS 7.8 EPSS 73% 3. März, 00:00

KEV NEU VMware

CVE-2022-22960 — VMware Multiple Products Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 73% 15. Apr., 00:00

KEV NEU Microsoft

CVE-2023-28252 — Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 70% 11. Apr., 00:00

KEV NEU Microsoft

CVE-2021-38646 — Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability

Kritisch CVSS 7.8 EPSS 51% 28. März, 00:00

KEV NEU Microsoft

CVE-2018-8589 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 50% 23. Mai, 00:00

KEV NEU Microsoft

CVE-2019-0903 — Microsoft GDI Remote Code Execution Vulnerability

Kritisch CVSS 8.8 EPSS 34% 25. März, 00:00

KEV NEU Microsoft

CVE-2026-21513 — Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability

Kritisch CVSS 8.8 EPSS 28% 10. Feb., 00:00

KEV NEU Google

CVE-2021-21148 — Google Chromium V8 Heap Buffer Overflow Vulnerability

Kritisch CVSS 8.8 EPSS 25% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2024-30040 — Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability

Kritisch CVSS 8.8 EPSS 23% 14. Mai, 00:00

KEV NEU Google

CVE-2021-21206 — Google Chromium Blink Use-After-Free Vulnerability

Kritisch CVSS 8.8 EPSS 22% 3. Nov., 00:00

KEV NEU Google

CVE-2022-4262 — Google Chromium V8 Type Confusion Vulnerability

Kritisch CVSS 8.8 EPSS 6% 5. Dez., 00:00

KEV NEU Microsoft

CVE-2026-21510 — Microsoft Windows Shell Protection Mechanism Failure Vulnerability

Kritisch CVSS 8.8 EPSS 3% 10. Feb., 00:00

KEV NEU Google

CVE-2025-13223 — Google Chromium V8 Type Confusion Vulnerability

Kritisch CVSS 8.8 EPSS 3% 19. Nov., 00:00

KEV NEU Google

CVE-2024-4761 — Google Chromium V8 Out-of-Bounds Memory Write Vulnerability

Kritisch CVSS 8.8 EPSS 2% 16. Mai, 00:00

KEV NEU Google

CVE-2026-3910 — Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffer Vulnerability

Kritisch CVSS 8.8 EPSS 1% 13. März, 00:00

KEV NEU Microsoft

CVE-2023-36884 — Microsoft Windows Search Remote Code Execution Vulnerability

Kritisch CVSS 7.5 EPSS 93% 17. Juli, 00:00

KEV NEU Microsoft

CVE-2024-38112 — Microsoft Windows MSHTML Platform Spoofing Vulnerability

Kritisch CVSS 7.5 EPSS 93% 9. Juli, 00:00

KEV NEU Microsoft

CVE-2017-0147 — Microsoft Windows SMBv1 Information Disclosure Vulnerability

Kritisch CVSS 7.5 EPSS 92% 24. Mai, 00:00

KEV NEU Microsoft

CVE-2021-33742 — Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability

Alert references 2021 CVE with patch deadline from 2021; no novel attack campaign or victim-sector intelligence provided beyond standard patch guidance.

Kritisch CVSS 7.5 EPSS 72% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2017-0213 — Microsoft Windows Privilege Escalation Vulnerability

Kritisch CVSS 7.3 EPSS 93% 28. März, 00:00

KEV NEU Microsoft

CVE-2023-24955 — Microsoft SharePoint Server Code Injection Vulnerability

Kritisch CVSS 7.2 EPSS 92% 26. März, 00:00

KEV NEU VMware

CVE-2024-37085 — VMware ESXi Authentication Bypass Vulnerability

Hoch CVSS 6.8 EPSS 72% 30. Juli, 00:00

KEV NEU Microsoft

CVE-2024-43572 — Microsoft Windows Management Console Remote Code Execution Vulnerability

Kritisch CVSS 7.8 EPSS 50% 8. Okt., 00:00

KEV NEU Microsoft

CVE-2024-30051 — Microsoft DWM Core Library Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 44% 14. Mai, 00:00

KEV NEU Microsoft

CVE-2019-1322 — Microsoft Windows Privilege Escalation Vulnerability

This is a dated patch reminder (5+ years old with expired deadline); no active campaign or novel attack details provided beyond standard patch guidance.

Kritisch CVSS 7.8 EPSS 36% 15. März, 00:00

KEV NEU Microsoft

CVE-2024-26169 — Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability

Kritisch CVSS 7.8 EPSS 35% 13. Juni, 00:00

KEV NEU Microsoft

CVE-2016-0151 — Microsoft Windows CSRSS Security Feature Bypass Vulnerability

Kritisch CVSS 7.8 EPSS 32% 28. März, 00:00

KEV NEU Microsoft

CVE-2020-0683 — Microsoft Windows Installer Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 31% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2019-0543 — Microsoft Windows Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 25% 15. März, 00:00

KEV NEU Microsoft

CVE-2020-17087 — Microsoft Windows Kernel Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 22% 3. Nov., 00:00

KEV NEU VMware

CVE-2020-3950 — VMware Multiple Products Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 21% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2024-38080 — Microsoft Windows Hyper-V Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 21% 9. Juli, 00:00

KEV NEU Microsoft

CVE-2017-0263 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 20% 10. Feb., 00:00

KEV NEU Microsoft

CVE-2026-21533 — Microsoft Windows Improper Privilege Management Vulnerability

This is a standard CISA Known Exploited Vulnerabilities (KEV) bulletin with BOD 22-01 compliance deadline; no novel attack campaign, victim attribution, or TTP disclosure beyond vendor mitigation guidance.

Kritisch CVSS 7.8 EPSS 20% 10. Feb., 00:00

KEV NEU Microsoft

CVE-2018-8611 — Microsoft Windows Kernel Privilege Escalation Vulnerability

This is a 2018 vulnerability with a June 2022 patch deadline noted; no active exploitation campaign or novel TTPs described—purely a patch reminder already covered by CISA/Microsoft advisories.

Kritisch CVSS 7.8 EPSS 16% 24. Mai, 00:00

KEV NEU Microsoft

CVE-2017-0005 — Microsoft Windows Graphics Device Interface (GDI) Privilege Escalation Vulnerability

This is a 2017 vulnerability with a 2022 patch deadline already expired; no novel attack campaign or tactical development is described.

Kritisch CVSS 7.8 EPSS 14% 24. Mai, 00:00

KEV NEU Microsoft

CVE-2024-38014 — Microsoft Windows Installer Improper Privilege Management Vulnerability

Kritisch CVSS 7.8 EPSS 13% 10. Sept., 00:00

KEV NEU Microsoft

CVE-2019-1064 — Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 12% 15. März, 00:00

KEV NEU Microsoft

CVE-2020-1027 — Microsoft Windows Kernel Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 12% 23. Mai, 00:00

KEV NEU Microsoft

CVE-2020-1464 — Microsoft Windows Spoofing Vulnerability

Kritisch CVSS 7.8 EPSS 8% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2019-1315 — Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability

This is a historical patch reminder from 2019 with expired deadline (2022-04-05); no indication of active exploitation or novel campaign—verify internal patch compliance rather than treat as emerging threat.

Kritisch CVSS 7.8 EPSS 8% 15. März, 00:00

KEV NEU Microsoft

CVE-2022-24521 — Microsoft Windows CLFS Driver Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 8% 13. Apr., 00:00

KEV NEU Microsoft

CVE-2025-21334 — Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability

Kritisch CVSS 7.8 EPSS 7% 14. Jan., 00:00

KEV NEU Microsoft

CVE-2016-0165 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 6% 22. Juni, 00:00

KEV NEU Microsoft

CVE-2019-0863 — Microsoft Windows Error Reporting (WER) Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 6% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2021-40450 — Microsoft Win32k Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 4% 25. Apr., 00:00

KEV NEU Microsoft

CVE-2019-0880 — Microsoft Windows Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 4% 23. Mai, 00:00

KEV NEU Microsoft

CVE-2025-59230 — Microsoft Windows Improper Access Control Vulnerability

Kritisch CVSS 7.8 EPSS 4% 14. Okt., 00:00

KEV NEU Microsoft

CVE-2024-38107 — Microsoft Windows Power Dependency Coordinator Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 3% 13. Aug., 00:00

KEV NEU Microsoft

CVE-2025-62221 — Microsoft Windows Use After Free Vulnerability

Kritisch CVSS 7.8 EPSS 3% 9. Dez., 00:00

KEV NEU Microsoft

CVE-2021-34484 — Microsoft Windows User Profile Service Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 3% 31. März, 00:00

KEV NEU Microsoft

CVE-2025-24990 — Microsoft Windows Untrusted Pointer Dereference Vulnerability

Kritisch CVSS 7.8 EPSS 3% 14. Okt., 00:00

KEV NEU Microsoft

CVE-2019-1129 — Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 2% 15. März, 00:00

KEV NEU Microsoft

CVE-2019-1130 — Microsoft Windows AppX Deployment Service Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 2% 23. Mai, 00:00

KEV NEU Microsoft

CVE-2025-24993 — Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability

Kritisch CVSS 7.8 EPSS 2% 11. März, 00:00

KEV NEU Microsoft

CVE-2022-22047 — Microsoft Windows Client Server Runtime Subsystem (CSRSS) Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 1% 12. Juli, 00:00

KEV NEU Microsoft

CVE-2021-36948 — Microsoft Windows Update Medic Service Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 1% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2025-30400 — Microsoft Windows DWM Core Library Use-After-Free Vulnerability

CISA KEV listing confirms active in-the-wild exploitation; prioritize patching Windows Server 2022/2019 and client systems before 2025-06-03 deadline.

Kritisch CVSS 7.8 EPSS 1% 13. Mai, 00:00

KEV NEU Microsoft

CVE-2022-41125 — Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability

Kritisch CVSS 7.8 EPSS 1% 8. Nov., 00:00

KEV NEU Microsoft

CVE-2021-27059 — Microsoft Office Remote Code Execution Vulnerability

Kritisch CVSS 7.6 EPSS 3% 3. Nov., 00:00

KEV NEU Google

CVE-2019-5825 — Google Chromium V8 Out-of-Bounds Write Vulnerability

Hoch CVSS 6.5 EPSS 74% 8. Juni, 00:00

KEV NEU Microsoft

CVE-2024-38178 — Microsoft Windows Scripting Engine Memory Corruption Vulnerability

Kritisch CVSS 7.5 EPSS 30% 13. Aug., 00:00

KEV NEU Fortinet

CVE-2025-58034 — Fortinet FortiWeb OS Command Injection Vulnerability

Kritisch CVSS 7.2 EPSS 43% 18. Nov., 00:00

KEV NEU Rarlab

CVE-2023-38831 — RARLAB WinRAR Code Execution Vulnerability

This is a publicly disclosed patch-and-exploit vulnerability from 2023; no novel active campaign data added by news sources beyond CISA KEV listing.

Kritisch CVSS 7.8 EPSS 94% 24. Aug., 00:00

KEV NEU Netapp

CVE-2023-4911 — GNU C Library Buffer Overflow Vulnerability

Kritisch CVSS 7.8 EPSS 71% 21. Nov., 00:00

KEV NEU Debian

CVE-2023-0386 — Linux Kernel Improper Ownership Management Vulnerability

Kritisch CVSS 7.8 EPSS 54% 17. Juni, 00:00

KEV NEU Microsoft

CVE-2023-28229 — Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability

Kritisch CVSS 7.0 EPSS 9% 4. Okt., 00:00

KEV NEU Microsoft

CVE-2025-62215 — Microsoft Windows Race Condition Vulnerability

Kritisch CVSS 7.0 EPSS 2% 12. Nov., 00:00

KEV NEU Microsoft

CVE-2025-24983 — Microsoft Windows Win32k Use-After-Free Vulnerability

Kritisch CVSS 7.0 EPSS 1% 11. März, 00:00

KEV NEU Microsoft

CVE-2024-38106 — Microsoft Windows Kernel Privilege Escalation Vulnerability

Kritisch CVSS 7.0 EPSS 1% 13. Aug., 00:00

KEV NEU Microsoft

CVE-2022-21919 — Microsoft Windows User Profile Service Privilege Escalation Vulnerability

Kritisch CVSS 7.0 EPSS 0% 25. Apr., 00:00

KEV NEU Microsoft

CVE-2021-34448 — Microsoft Windows Scripting Engine Memory Corruption Vulnerability

Hoch CVSS 6.8 EPSS 2% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2020-1472 — Microsoft Netlogon Privilege Escalation Vulnerability

Hoch CVSS 5.5 EPSS 94% 3. Nov., 00:00

KEV NEU Microsoft

CVE-2024-43573 — Microsoft Windows MSHTML Platform Spoofing Vulnerability

Hoch CVSS 6.5 EPSS 18% 8. Okt., 00:00

KEV NEU Microsoft

CVE-2025-24054 — Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability

No active attack campaign or victim sector details disclosed; this is a standard CISA KEV patch advisory without operational intelligence beyond standard mitigation guidance.

Hoch CVSS 6.5 EPSS 8% 17. Apr., 00:00

KEV NEU Google

CVE-2022-2856 — Google Chromium Intents Insufficient Input Validation Vulnerability

Hoch CVSS 6.5 EPSS 5% 18. Aug., 00:00

KEV NEU VMware

CVE-2021-22017 — VMware vCenter Server Improper Access Control

Hoch CVSS 5.3 EPSS 75% 10. Jan., 00:00

KEV NEU Microsoft

CVE-2026-20805 — Microsoft Windows Information Disclosure Vulnerability

Hoch CVSS 5.5 EPSS 3% 13. Jan., 00:00

KEV NEU Microsoft

CVE-2025-24991 — Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability

Hoch CVSS 5.5 EPSS 1% 11. März, 00:00

KEV NEU Microsoft

CVE-2022-41049 — Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability

MOTW bypass allows attackers to execute malware from internet-downloaded files without security warnings—critical for manufacturing environments where CAD/ERP file sharing is common.

Hoch CVSS 5.4 EPSS 13% 14. Nov., 00:00

KEV NEU Microsoft

CVE-2021-31199 — Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability

No novel attack campaign or DACH-specific targeting identified; alert appears to be routine patch reminder from CISA KEV catalogue.

Hoch CVSS 5.2 EPSS 1% 3. Nov., 00:00

KEV NEU Netapp

CVE-2021-22600 — Linux Kernel Privilege Escalation Vulnerability

Hoch CVSS 6.6 EPSS 0% 11. Apr., 00:00

KEV NEU Microsoft

CVE-2025-24984 — Microsoft Windows NTFS Information Disclosure Vulnerability

Hoch CVSS 4.6 EPSS 3% 11. März, 00:00

KEV NEU Linux

CVE-2022-2586 — Linux Kernel Use-After-Free Vulnerability

Hoch CVSS 5.3 EPSS 2% 26. Juni, 00:00

NEU Canon

ZDI-26-204: (Pwn2Own) Canon imageCLASS MF654Cdw XPS Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

Pwn2Own-disclosed RCE requiring no authentication on Canon MFP model likely in use across manufacturing sites; patch/network segmentation required urgently.

Kritisch CVSS 9.8 EPSS 0% 16. März, 05:00

NEU VMware

ZDI-26-189: (Pwn2Own) VMware ESXi VMXNET3 Integer Overflow Local Privilege Escalation Vulnerability

Integer overflow in VMXNET3 driver allows local privilege escalation on ESXi; patching required for vSphere 8.x infrastructure.

Kritisch CVSS 9.3 EPSS 0% 16. März, 05:00

NEU Fortinet

ZDI-26-115: Fortinet FortiClient VPN FCConfig Utility Link Following Local Privilege Escalation Vulnerability

FCConfig utility symlink-following flaw enables unprivileged users to escalate to higher privilege levels on VPN client installations; requires prior code execution but no authentication.

Mittel CVSS 7.1 EPSS 0% 19. Feb., 06:00

NEU Microsoft

ZDI-26-178: Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability

Windows cdd component LPE with high CVSS; requires local code execution first, limiting exposure but high impact if combined with remote code execution.

Mittel CVSS 7.0 EPSS 0% 10. März, 05:00

NEU Debian

ZDI-26-238: Linux Kernel AoE Driver Use-After-Free Local Privilege Escalation Vulnerability

AoE (ATA over Ethernet) driver vulnerability; exploitation requires local code execution first, making it a second-stage privilege escalation risk in multi-tenant or compromised-host scenarios.

Mittel CVSS 7.0 EPSS 0% 30. März, 05:00

NEU Microsoft

Microsoft Defender wrongly flags DigiCert certs as Trojan:Win32/Cerdigent.A!dha

This is a detection logic error in Microsoft Defender that incorrectly flags legitimate DigiCert certificates as malware; it requires immediate awareness and potential signature/policy remediation to prevent legitimate business certificate validation failures.

Mittel 3. Mai, 18:11

NEU Linux

Linux-Lücke „Copy Fail“ wird bereits angegriffen

Active in-the-wild exploitation of Linux "Copy Fail" vulnerability signals rapid weaponization; manufacturing systems running Ubuntu 24.04 require immediate kernel patching.

Hoch 4. Mai, 06:44

NEU Microsoft

Update-Panne: Microsoft Defender löscht Root-Zertifikate von Digicert

A Microsoft Defender update bug deleted DigiCert root certificates, potentially breaking certificate validation across systems — this is an operational incident requiring immediate verification of certificate store integrity, not a patch reminder.

Hoch 4. Mai, 07:01

NEU Microsoft

Bypassing Administrator Protection by Abusing UI Access

Project Zero discloses novel UAC/Administrator Protection bypass exploiting kernel token integrity level mechanisms; demonstrates that Microsoft's post-Vista privilege boundary protections remain bypassable through UI manipulation attacks.

Hoch 12. Feb., 08:00

NEU Amazon

“Legitimate” phishing: how attackers weaponize Amazon SES to bypass email security

Attackers abuse legitimate Amazon SES infrastructure to bypass email filters and authentication checks, enabling scaled phishing and BEC attacks that bypass traditional sender reputation filters.

Hoch 4. Mai, 10:00

NEU Linux Kernel

[UPDATE] Linux Kernel: Mehrere Schwachstellen

BSI UPDATE advisory signals kernel vulnerabilities with potential for RCE/privilege escalation; impact scope unspecified without CVE details—requires follow-up on which kernel versions and Ubuntu releases are affected.

Hoch 4. Mai, 09:36

NEU Linux

[UPDATE] Linux Kernel: Mehrere Schwachstellen

BSI warning indicates multiple active kernel CVEs; patching status unclear without specific CVE identifiers—requires follow-up on CVSS scores and KEV catalog inclusion to prioritize.

Hoch 4. Mai, 09:35

NEU Microsoft

Microsoft Patch Tuesday, March 2026 Edition

March 2026 Patch Tuesday addresses 77 vulnerabilities with no zero-days; routine monthly advisory without active exploitation intelligence or novel attack campaigns.

Mittel 11. März, 00:32

NEU Linux

[UPDATE] Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service

BSI advisory on multiple Linux kernel DoS flaws; specifics are vague (no CVE list provided), limiting immediate patch/remediation planning—clarification from BSI or vendor advisories needed.

Mittel 4. Mai, 09:34