Jump to the main content block
  1. Home
  2. 公告資訊_Vulnerability Alert

【Vulnerability Alert】CISA Added 10 Known Exploited Vulnerabilities to the KEV Catalog (2026/05/18–2026/05/24)

publish date : 2026-05-29 update date : 2026-05-29

Source: Ministry of education information & communication security contingency platform

"" "" ""

Publication Number TACERT-ANA-2026052610055858 Publication Time 2026-05-26 10:07:59
Incident Type ANA-Vulnerability Alert Discovery Time 2026-05-26 10:07:59
Impact Level Low  
[Subject]
【Vulnerability Alert】CISA Added 10 Known Exploited Vulnerabilities to the KEV Catalog (2026/05/18–2026/05/24)
[Content]

Forwarded from TWCERTCC Security Advisory TWCERTCC-200-202605-00000014

【CVE-2008-4250】Microsoft Windows Buffer Overflow Vulnerability (CVSS v3.1: 9.8)
【Whether exploited by ransomware: Unknown】 A buffer overflow vulnerability exists in Windows Server Service of Microsoft Windows. A remote attacker may trigger a buffer overflow during the path canonicalization process through a specially crafted RPC request, thereby executing arbitrary code.

【CVE-2009-1537】Microsoft DirectX NULL Byte Overwrite Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 A NULL byte overwrite vulnerability exists in the QuickTime Movie Parser Filter within the DirectShow component quartz.dll of Microsoft DirectX. A remote attacker may trigger this vulnerability through a specially crafted QuickTime media file, thereby executing arbitrary code.

【CVE-2009-3459】Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 Adobe Acrobat and Reader have a heap-based buffer overflow vulnerability. A remote attacker may trigger memory corruption through a specially crafted PDF file, thereby executing arbitrary code.

【CVE-2010-0249】Microsoft Internet Explorer Use-After-Free Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 Microsoft Internet Explorer has a use-after-free memory vulnerability. A remote attacker may execute arbitrary code by accessing a pointer associated with a deleted object.

【CVE-2010-0806】Microsoft Internet Explorer Use-After-Free Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 Microsoft Internet Explorer has a use-after-free memory vulnerability. A remote attacker may exploit this vulnerability by accessing an invalid pointer after an object is deleted, thereby executing arbitrary code.

【CVE-2026-41091】Microsoft Defender Link Following Vulnerability (CVSS v3.1: 7.8)
【Whether exploited by ransomware: Unknown】 Microsoft Defender has a link following vulnerability, which allows an authorized attacker to elevate privileges locally.

【CVE-2026-45498】Microsoft Defender Denial of Service Vulnerability (CVSS v3.1: 4.0)
【Whether exploited by ransomware: Unknown】 Microsoft Defender has an unspecified vulnerability, which may result in denial of service.

【CVE-2025-34291】Langflow Origin Validation Error Vulnerability (CVSS v3.1: 8.8)
【Whether exploited by ransomware: Unknown】 Langflow has an origin validation error vulnerability. Due to its overly permissive CORS configuration, and because the refresh token cookie is set to SameSite=None, an attacker may use this to access endpoints that require authentication, thereby executing arbitrary code and ultimately obtaining full control of the system.

【CVE-2026-34926】Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability (CVSS v3.1: 6.7)
【Whether exploited by ransomware: Unknown】 Trend Micro Apex One (on-premise) has a directory traversal vulnerability, which may allow a pre-authenticated local attacker to modify critical data tables on the server, thereby injecting malicious code and delivering it to managed endpoint devices.

【CVE-2026-9082】Drupal Core SQL Injection Vulnerability (CVSS v3.1: 9.8)
【Whether exploited by ransomware: Unknown】 Drupal Core has an SQL injection vulnerability. An attacker may send specially crafted requests through the database abstraction API, thereby achieving privilege escalation and remote code execution.

Information Sharing Level: WHITE (the intelligence content is information that may be publicly disclosed)
[Affected Platform]

【CVE-2008-4250】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067

【CVE-2009-1537】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028

【CVE-2009-3459】Please refer to the affected versions listed by the official source https://helpx.adobe.com/security/security-bulletin.html

【CVE-2010-0249】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002

【CVE-2010-0806】Please refer to the affected versions listed by the official source https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018

【CVE-2026-41091】Please refer to the affected versions listed by the official source https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41091

【CVE-2026-45498】Please refer to the affected versions listed by the official source https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45498

【CVE-2025-34291】Langflow versions 1.6.9 and earlier

【CVE-2026-34926】Please refer to the affected versions listed by the official source https://success.trendmicro.com/en-US/solution/KA-0023430

【CVE-2026-9082】Please refer to the affected versions listed by the official source https://www.drupal.org/sa-core-2026-004
[Recommended Actions]

【CVE-2008-4250】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067

【CVE-2009-1537】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-028

【CVE-2009-3459】The official source has released a fix update for the vulnerability. Please update to the relevant version https://helpx.adobe.com/security/security-bulletin.html

【CVE-2010-0249】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-002

【CVE-2010-0806】The official source has released a fix update for the vulnerability. Please update to the relevant version https://learn.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-018

【CVE-2026-41091】The official source has released a fix update for the vulnerability. Please update to the relevant version https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41091

【CVE-2026-45498】The official source has released a fix update for the vulnerability. Please update to the relevant version https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45498

【CVE-2025-34291】Upgrade the corresponding product to the following version, or later, Langflow 1.7.0

【CVE-2026-34926】The official source has released a fix update for the vulnerability. Please update to the relevant version https://success.trendmicro.com/en-US/solution/KA-0023430

【CVE-2026-9082】The official source has released a fix update for the vulnerability. Please update to the relevant version https://www.drupal.org/sa-core-2026-004

[Reference]
(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
Organizer: Computer Center
Click Num:
Print