Skip to content
Auto-CTI

What has changed?

Comparing 5 May 2026 with the previous day 4 May 2026.

Newly added

23
NEW PLC manufacturer (unspecified in alert)
100

CVE-2026-25293

Critical CVSS 9.6 EPSS 0%
NEW Microsoft
62

Patch Tuesday - April 2026

April 2026 patch cycle includes zero-day fixes for SharePoint spoofing, Defender elevation-of-privilege, and Windows IKE pre-auth RCE—all directly relevant to manufacturing operations relying on AD, Remote Desktop Gateway, and Defender for Endpoint.

Medium CVSS 6.5 EPSS 7%
NEW Microsoft, Google, Adobe
52

Patch Tuesday, April 2026 Edition

BlueHammer (Windows Defender zero-day) and SharePoint Server zero-day represent actively exploited flaws requiring immediate patching ahead of standard patch cycles.

Critical
NEW Microsoft
20

Microsoft Windows - Kritische Schwachstelle in Windows OLE

BSI RSS feed publication indicates German federal cybersecurity authority has flagged this as critical for DACH organizations; OLE vulnerabilities commonly exploited in supply-chain and manufacturing sector attacks.

High

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

153
NEW Microsoft
20

Bypassing Administrator Protection by Abusing UI Access

Project Zero discloses novel UAC/Administrator Protection bypass exploiting kernel token integrity level mechanisms; demonstrates that Microsoft's post-Vista privilege boundary protections remain bypassable through UI manipulation attacks.

High
NEW Linux Kernel
20

[UPDATE] Linux Kernel: Mehrere Schwachstellen

BSI UPDATE advisory signals kernel vulnerabilities with potential for RCE/privilege escalation; impact scope unspecified without CVE details—requires follow-up on which kernel versions and Ubuntu releases are affected.

High
NEW Linux
20

[UPDATE] Linux Kernel: Mehrere Schwachstellen

BSI warning indicates multiple active kernel CVEs; patching status unclear without specific CVE identifiers—requires follow-up on CVSS scores and KEV catalog inclusion to prioritize.

High
NEW Microsoft
12

Microsoft Patch Tuesday, March 2026 Edition

March 2026 Patch Tuesday addresses 77 vulnerabilities with no zero-days; routine monthly advisory without active exploitation intelligence or novel attack campaigns.

Medium
ESC