Print - 【Vulnerability Alert】CISA Added 10 Known Exploited Vulnerabilities to the KEV Catalog (2026/05/18

【Vulnerability Alert】CISA Added 10 Known Exploited Vulnerabilities to the KEV Catalog (2026/05/18–2026/05/24)

publish date : 2026-05-29 update date : 2026-05-29

Source: Ministry of education information & communication security contingency platform

"" "" ""


Publication Number	TACERT-ANA-2026052610055858	Publication Time	2026-05-26 10:07:59
Incident Type	ANA-Vulnerability Alert	Discovery Time	2026-05-26 10:07:59
Impact Level	Low
[Subject] 【Vulnerability Alert】CISA Added 10 Known Exploited Vulnerabilities to the KEV Catalog (2026/05/18–2026/05/24)
[Content] Forwarded from TWCERTCC Security Advisory TWCERTCC-200-202605-00000014 【CVE-2008-4250】Microsoft Windows Buffer Overflow Vulnerability (CVSS v3.1: 9.8) 【Whether exploited by ransomware: Unknown】 A buffer overflow vulnerability exists in Windows Server Service of Microsoft Windows. A remote attacker may trigger a buffer overflow during the path canonicalization process through a specially crafted RPC request, thereby executing arbitrary code. 【CVE-2009-1537】Microsoft DirectX NULL Byte Overwrite Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 A NULL byte overwrite vulnerability exists in the QuickTime Movie Parser Filter within the DirectShow component quartz.dll of Microsoft DirectX. A remote attacker may trigger this vulnerability through a specially crafted QuickTime media file, thereby executing arbitrary code. 【CVE-2009-3459】Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 Adobe Acrobat and Reader have a heap-based buffer overflow vulnerability. A remote attacker may trigger memory corruption through a specially crafted PDF file, thereby executing arbitrary code. 【CVE-2010-0249】Microsoft Internet Explorer Use-After-Free Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 Microsoft Internet Explorer has a use-after-free memory vulnerability. A remote attacker may execute arbitrary code by accessing a pointer associated with a deleted object. 【CVE-2010-0806】Microsoft Internet Explorer Use-After-Free Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 Microsoft Internet Explorer has a use-after-free memory vulnerability. A remote attacker may exploit this vulnerability by accessing an invalid pointer after an object is deleted, thereby executing arbitrary code. 【CVE-2026-41091】Microsoft Defender Link Following Vulnerability (CVSS v3.1: 7.8) 【Whether exploited by ransomware: Unknown】 Microsoft Defender has a link following vulnerability, which allows an authorized attacker to elevate privileges locally. 【CVE-2026-45498】Microsoft Defender Denial of Service Vulnerability (CVSS v3.1: 4.0) 【Whether exploited by ransomware: Unknown】 Microsoft Defender has an unspecified vulnerability, which may result in denial of service. 【CVE-2025-34291】Langflow Origin Validation Error Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 Langflow has an origin validation error vulnerability. Due to its overly permissive CORS configuration, and because the refresh token cookie is set to SameSite=None, an attacker may use this to access endpoints that require authentication, thereby executing arbitrary code and ultimately obtaining full control of the system. 【CVE-2026-34926】Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability (CVSS v3.1: 6.7) 【Whether exploited by ransomware: Unknown】 Trend Micro Apex One (on-premise) has a directory traversal vulnerability, which may allow a pre-authenticated local attacker to modify critical data tables on the server, thereby injecting malicious code and delivering it to managed endpoint devices. 【CVE-2026-9082】Drupal Core SQL Injection Vulnerability (CVSS v3.1: 9.8) 【Whether exploited by ransomware: Unknown】 Drupal Core has an SQL injection vulnerability. An attacker may send specially crafted requests through the database abstraction API, thereby achieving privilege escalation and remote code execution. Information Sharing Level: WHITE (the intelligence content is information that may be publicly disclosed)
[Affected Platform] 【CVE-2008-4250】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067 【CVE-2009-1537】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028 【CVE-2009-3459】Please refer to the affected versions listed by the official source https://helpx.adobe.com/security/security-bulletin.html 【CVE-2010-0249】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002 【CVE-2010-0806】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018 【CVE-2026-41091】Please refer to the affected versions listed by the official source https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41091 【CVE-2026-45498】Please refer to the affected versions listed by the official source https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45498 【CVE-2025-34291】Langflow versions 1.6.9 and earlier 【CVE-2026-34926】Please refer to the affected versions listed by the official source https://success.trendmicro.com/en-US/solution/KA-0023430 【CVE-2026-9082】Please refer to the affected versions listed by the official source https://www.drupal.org/sa-core-2026-004
[Recommended Actions] 【CVE-2008-4250】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067 【CVE-2009-1537】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028 【CVE-2009-3459】The official source has released a fix update for the vulnerability. Please update to the relevant version https://helpx.adobe.com/security/security-bulletin.html 【CVE-2010-0249】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002 【CVE-2010-0806】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018 【CVE-2026-41091】The official source has released a fix update for the vulnerability. Please update to the relevant version https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41091 【CVE-2026-45498】The official source has released a fix update for the vulnerability. Please update to the relevant version https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45498 【CVE-2025-34291】Upgrade the corresponding product to the following version, or later, Langflow 1.7.0 【CVE-2026-34926】The official source has released a fix update for the vulnerability. Please update to the relevant version https://success.trendmicro.com/en-US/solution/KA-0023430 【CVE-2026-9082】The official source has released a fix update for the vulnerability. Please update to the relevant version https://www.drupal.org/sa-core-2026-004
[Reference]

(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw

Organizer: Computer Center