Skip to content
Auto-CTI

What has changed?

Comparing 1 May 2026 with the previous day 24 April 2026.

Newly added

9
NEW ABB
60

ABB Edgenius Management Portal

This critical authentication bypass vulnerability in ABB Edgenius Management Portal could allow an attacker on the network to execute arbitrary code, posing a significant risk to manufacturing operations.

Low CVSS 3.1 EPSS 0%
NEW ABB
40

ABB AWIN Gateways

Exploitation allows unauthenticated remote reboot and system configuration disclosure, posing operational risk to manufacturing environments.

Low CVSS 3.1 EPSS 0%
NEW Ivanti
0

CVE-2026-33446

This is a newly disclosed vulnerability with no active exploitation reported yet, but it affects a critical remote access component used by the company.

Low EPSS 0%
NEW Ivanti
0

CVE-2026-33447

This is a newly disclosed vulnerability in Ivanti Secure Access client with no evidence of active exploitation yet, but it underscores the need for patching critical remote access infrastructure.

Low EPSS 0%
NEW Ivanti
0

CVE-2026-33449

This is a newly disclosed vulnerability in Ivanti Secure Access client that could allow denial of service via a crafted server message, but no active exploitation or specific victim sectors are mentioned.

Low EPSS 0%
NEW Ivanti
0

CVE-2026-33451

This is a patch notification with no evidence of active exploitation or specific campaign details.

Low EPSS 0%
NEW Ivanti
0

CVE-2026-40950

This is a patch notification with no active attack campaign details or victim sector information.

Low EPSS 0%
NEW Ivanti
0

CVE-2026-40951

This is a patch reminder for a local DoS vulnerability in Ivanti Secure Access Windows clients; no active exploitation or sector targeting is reported.

Low EPSS 0%

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

6
NEW Microsoft
100

CVE-2026-33102

This CVE describes a specific open redirect flaw in M365 Copilot that could allow privilege escalation, which is not a general patch reminder and may require immediate attention given the company's use of Microsoft 365.

Critical CVSS 9.3 EPSS 0%
NEW Microsoft
100

CVE-2026-35431

This is a patch notification with no evidence of active exploitation or specific attack campaigns beyond the CVE description.

Critical CVSS 10.0 EPSS 0%
NEW Microsoft
23

CVE-2026-33694

This is a patch reminder for a critical Windows privilege escalation vulnerability with no active attack campaign or sector-specific targeting described.

Low EPSS 0%
ESC