CVE Brief Security Intelligence

Saturday's disclosure activity centered on a small set of high-severity vulnerabilities, while CISA's KEV catalog highlighted ongoing exploitation of Drupal Core (CVE-2026-9082), Microsoft Defender (CVE-2026-41091, CVE-2026-45498), and Trend Micro Apex One (CVE-2026-34926). The day brought zero critical CVEs (down 100% from 11 yesterday) and six high-priority CVEs (down 91% from 64), reflecting a typical weekend slowdown in disclosures. Notable KEV additions include Langflow (CVE-2025-34291) and a fresh Drupal Core flaw, alongside several legacy Microsoft and Adobe entries being revisited for exploitation tracking. Attack patterns remain focused on endpoint security products and content management platforms, with Defender and Apex One both showing actively exploited weaknesses. Patch availability for yesterday's disclosed CVEs sits at 0%, so defenders should prioritize compensating controls and vendor advisory monitoring over weekend patching cycles.

• Microsoft Defender and Trend Micro Apex One both appear in KEV with CVSS 9.5 actively exploited flaws
• Zero critical CVEs disclosed, down 100% from 11 the prior day
• Six high-priority CVEs disclosed, down 91% from 64 the prior day
• Drupal Core CVE-2026-9082 and Langflow CVE-2025-34291 added to active exploitation tracking
• Patch availability at 0% for yesterday's high-priority disclosures
• Ten CVEs flagged as actively exploited, unchanged from the prior day

Immediate action: Prioritize review of Microsoft Defender (CVE-2026-41091, CVE-2026-45498), Trend Micro Apex One (CVE-2026-34926), and Drupal Core (CVE-2026-9082) deployments, as these endpoint and CMS products are under active exploitation. With zero patches available for yesterday's high-priority CVEs, monitor vendor advisories closely and apply compensating controls such as network segmentation and enhanced logging until fixes ship.