Skip to content
Auto-CTI

What has changed?

Comparing 29 May 2026 with the previous day 28 May 2026.

Newly added

83
KEV NEW
75

CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS

CVE-2026-0265 enables authentication bypass in Palo Alto Networks firewalls with Cloud Authentication Service enabled; no public exploits available yet but practical exploitability confirmed with technical details pending disclosure.

Critical CVSS 9.8 EPSS 5%
Kimsuky
80

Kimsuky targets organizations with PebbleDash-based tools

Kimsuky has developed two variants of the httpMalice backdoor: an HTTP/HTTPS variant (v1.9) with Windows service persistence and an older Dropbox-API-based variant (v1.8), which could target European and DACH organizations.

Critical
NEW
47

[UPDATE] OpenSSL: Multiple Vulnerabilities

BSI warning regarding multiple OpenSSL vulnerabilities with potential code execution and denial-of-service; update information without specific CVE details in this summary.

Critical
NEW
20

CVE-2026-9933

This is a pure patch notification with no evidence of active exploitation or coordinated attacks; the vulnerability requires targeted user interaction.

High EPSS 0%
NEW
20

7-Zip: Multiple Vulnerabilities

BSI warns of multiple unspecified vulnerabilities in 7-Zip triggered by user interaction with manipulated files,advisory lacks CVE numbers or PoC details.

High

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

35
KEV
76

Patch Tuesday - May 2026

137 Microsoft vulnerabilities published in May 2026, including critical RCE in Windows Netlogon and DNS Client with no known active exploitation.

Critical CVSS 9.8 EPSS 94%
NEW
86

CVE-2026-47331

An unprivileged local user can exploit a race condition in AppArmor SAUCE patches to achieve arbitrary code execution, which is particularly relevant for multi-tenant environments.

Critical CVSS 7.8 EPSS 0%
NEW
67

CVE-2026-47328

An unprivileged local user can trigger a memory-management bug in the kernel via AppArmor SAUCE patches, leading to slab metadata corruption and resource exhaustion.

High CVSS 6.1 EPSS 0%
NEW
51

CVE-2026-32998

A remote code execution in Veeam Service Provider Console enables unauthorized access to backup infrastructure and potential compromise of business-critical data.

Critical EPSS 0%
NEW
20

Veeam Backup & Replication: Multiple Vulnerabilities

A BSI warning regarding multiple vulnerabilities in Veeam Backup & Replication signals elevated priority for patching, as this solution is central to the company's data protection and recovery strategy.

High
NEW
20

Mozilla Firefox: Multiple Vulnerabilities

BSI advisory without specific CVE numbers or technical details; typical pattern of generic security warnings without documented active exploits in the wild.

High
20

Adobe Creative Cloud Applications: Multiple Vulnerabilities

BSI warns of multiple unspecified vulnerabilities in Adobe Creative Cloud applications without concrete CVE numbers or patching information; the advisory is generic and requires clarification of affected versions and available patches.

High
NEW
15

Warning of Malware Due to Supply-Chain Attacks

CISA warns of currently active supply-chain attacks on multiple popular developer tools, with 42 TanStack packages comprising 84 versions compromised within 6,20 minutes; affected organizations should immediately reset credentials and audit installations.

High
0

Microsoft Patch Day May 2026

BSI notification of Microsoft's monthly patch day , routine security updates with no specific CVEs or exploitation status disclosed.

Medium
ESC