What were the most critical CVEs disclosed this week?

This week's roundup covers 50 critical vulnerability disclosures analyzed by Sherlock Forensics. Each CVE is assessed for real-world exploitability, affected product prevalence and recommended remediation priority. Organizations running affected products should check the detailed analysis below and prioritize patching based on CVSS severity and active exploitation status.

How should organizations respond to new CVE disclosures?

Effective CVE response requires automated vulnerability scanning that checks your asset inventory against new disclosures within 24 hours, a prioritized patching workflow that addresses critical and actively exploited vulnerabilities within 72 hours, compensating controls for vulnerabilities that cannot be immediately patched, and validation testing to confirm patches are effective. Sherlock Forensics managed security service automates this workflow.

Where can I get professional help responding to these vulnerabilities?

Sherlock Forensics offers emergency CVE response assessments with 24-hour turnaround to verify whether your specific deployment is vulnerable and test whether your compensating controls block exploitation. Managed security clients receive automated alerting when new CVEs affect their technology stack. Contact 604.229.1994 for immediate assistance.

Weekly Security Roundup 2026-04-26

CVE-2026-6977 - CVSS N/A (HIGH)

CVE-2026-6977: A security vulnerability has Authorization

A security vulnerability has authorization bypass (CVE-2026-6977) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-7002 - CVSS N/A (HIGH)

CVE-2026-7002: KLiK SocialMediaWebsite up to SQL injection

KLiK SocialMediaWebsite up to SQL injection (CVE-2026-7002) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6987 - CVSS N/A (HIGH)

CVE-2026-6987: PicoClaw up to 0.2.4. Command injection -

PicoClaw up to 0.2.4. command injection (CVE-2026-6987) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-21515 - CVSS N/A (HIGH)

CVE-2026-21515: Exposure of sensitive information

Exposure of sensitive information privilege escalation (CVE-2026-21515) scores CVSS 9.9 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-39920 - CVSS N/A (HIGH)

CVE-2026-39920: BridgeHead FileStore versions prioRemote

BridgeHead FileStore versions prior remote code execution (CVE-2026-39920) scores CVSS 9.8 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-5464 - CVSS N/A (HIGH)

CVE-2026-5464: ExactMetrics – Google Analytics Remote

ExactMetrics – Google Analytics remote code execution (CVE-2026-5464) scores CVSS 7.2 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-5364 - CVSS N/A (HIGH)

CVE-2026-5364: Drag and Drop File Upload RCE

Drag and Drop File remote code execution (CVE-2026-5364) scores CVSS 8.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-26210 - CVSS N/A (HIGH)

CVE-2026-26210: KTransformers through 0.5.3 unsafe

KTransformers through 0.5.3 unsafe deserialization (CVE-2026-26210) scores CVSS 9.8 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41353 - CVSS N/A (HIGH)

CVE-2026-41353: OpenClaw before 2026.3.22 access

OpenClaw before 2026.3.22 access authorization bypass (CVE-2026-41353) scores CVSS 8.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6885 - CVSS N/A (HIGH)

CVE-2026-6885: Borg SPM Remote Code Execution

Borg SPM 2007 (Sales remote code execution (CVE-2026-6885) scores CVSS 9.8 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41349 - CVSS N/A (HIGH)

CVE-2026-41349: OpenClaw before 2026.3.28 agentic

OpenClaw before 2026.3.28 agentic vulnerability (CVE-2026-41349) scores CVSS 8.8 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-23751 - CVSS N/A (HIGH)

CVE-2026-23751: Kofax Capture Remote Code Execution

Kofax Capture, now referred remote code execution (CVE-2026-23751) scores CVSS 9.8 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41352 - CVSS N/A (HIGH)

CVE-2026-41352: OpenClaw Remote Code Execution

OpenClaw before 2026.3.31 remote remote code execution (CVE-2026-41352) scores CVSS 8.8 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6859 - CVSS N/A (HIGH)

CVE-2026-6859: A flaw was found Vulnerability - Sherlock

A flaw was found vulnerability (CVE-2026-6859) scores CVSS 8.8 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-5935 - CVSS N/A (HIGH)

CVE-2026-5935: IBM Total Storage Service Remote code

IBM Total Storage Service remote code execution (CVE-2026-5935) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41468 - CVSS N/A (HIGH)

CVE-2026-41468: Beghelli Sicuro24 SicuroWeb embeds

Beghelli Sicuro24 SicuroWeb embeds vulnerability (CVE-2026-41468) scores CVSS 8.7 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-3621 - CVSS N/A (HIGH)

CVE-2026-3621: IBM WebSphere Application Server

IBM WebSphere Application Server vulnerability (CVE-2026-3621) scores CVSS 7.5 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41455 - CVSS N/A (HIGH)

CVE-2026-41455: WeKan before 8.35 server-side request

WeKan before 8.35 server-side request vulnerability (CVE-2026-41455) scores CVSS 8.5 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41454 - CVSS N/A (HIGH)

CVE-2026-41454: WeKan before 8.35 missing authorization

WeKan before 8.35 missing authorization vulnerability (CVE-2026-41454) scores CVSS 8.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6832 - CVSS N/A (HIGH)

CVE-2026-6832: Hermes WebUI Directory Traversal CVSS 8.1 HIGH

Hermes WebUI directory traversal (CVE-2026-6832) scores CVSS 8.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-40520 - CVSS N/A (HIGH)

CVE-2026-40520: FreePBX RCE CVSS 7.2 HIGH

FreePBX API module remote code execution (CVE-2026-40520) scores CVSS 7.2 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-34282 - CVSS N/A (HIGH)

CVE-2026-34282: Oracle Denial of Service CVSS 7.5 HIGH

Oracle denial of service vulnerability (CVE-2026-34282) scores CVSS 7.5 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-4132 - CVSS N/A (HIGH)

CVE-2026-4132: HTTP Headers Plugin RCE CVSS 7.2 HIGH

HTTP Headers plugin remote code execution (CVE-2026-4132) scores CVSS 7.2 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-33519 - CVSS N/A (HIGH)

CVE-2026-33519: Incorrect Authorization CVSS 9.8 CRITICAL

Incorrect authorization vulnerability (CVE-2026-33519) scores CVSS 9.8 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-34305 - CVSS N/A (HIGH)

CVE-2026-34305: Oracle CVSS 7.5 HIGH

Oracle vulnerability (CVE-2026-34305) scores CVSS 7.5 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-34292 - CVSS N/A (HIGH)

CVE-2026-34292: Oracle CVSS 7.2 HIGH

Oracle vulnerability (CVE-2026-34292) scores CVSS 7.2 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-22016 - CVSS N/A (HIGH)

CVE-2026-22016: Oracle CVSS 7.5 HIGH

Oracle vulnerability (CVE-2026-22016) scores CVSS 7.5 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-5478 - CVSS N/A (HIGH)

CVE-2026-5478: The Everest Forms plugin File read | Sherlock

The Everest Forms plugin file read (CVE-2026-5478) scores CVSS 8.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6631 - CVSS N/A (HIGH)

CVE-2026-6631 Analysis: CVSS 8.8 HIGH

A vulnerability was determined buffer overflow (CVE-2026-6631) scores CVSS 8.8 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41296 - CVSS N/A (HIGH)

CVE-2026-41296: OpenClaw before 2026.3.31 contains File read

OpenClaw before 2026.3.31 contains file read (CVE-2026-41296) scores CVSS 8.2 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-34428 - CVSS N/A (HIGH)

CVE-2026-34428: Vvveb prior to 1.0.8.1 contains File read |

Vvveb prior to 1.0.8.1 contains file read (CVE-2026-34428) scores CVSS 7.7 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6249 - CVSS N/A (HIGH)

CVE-2026-6249: Vvveb CMS 1.0.8 contains Remote code executio

Vvveb CMS 1.0.8 contains remote code execution (CVE-2026-6249) scores CVSS 8.8 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-39918 - CVSS N/A (HIGH)

CVE-2026-39918: Vvveb prior to 1.0.8.1 contains Remote code

Vvveb prior to 1.0.8.1 contains remote code execution (CVE-2026-39918) scores CVSS 9.8 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6662 - CVSS N/A (HIGH)

CVE-2026-6662 Analysis: CVSS 7.3 HIGH

A vulnerability was found vulnerability (CVE-2026-6662) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6635 - CVSS N/A (HIGH)

CVE-2026-6635: A security vulnerability has Vulnerability |

A security vulnerability has vulnerability (CVE-2026-6635) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41297 - CVSS N/A (HIGH)

CVE-2026-41297: OpenClaw before 2026.3.31 contains Vulnerabi

OpenClaw before 2026.3.31 contains vulnerability (CVE-2026-41297) scores CVSS 7.6 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41329 - CVSS N/A (HIGH)

CVE-2026-41329: OpenClaw before 2026.3.31 contains Privilege

OpenClaw before 2026.3.31 contains privilege escalation (CVE-2026-41329) scores CVSS 9.9 CRITICAL. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-41299 - CVSS N/A (HIGH)

CVE-2026-41299: OpenClaw before 2026.3.28 contains Access co

OpenClaw before 2026.3.28 contains access control (CVE-2026-41299) scores CVSS 7.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6248 - CVSS N/A (HIGH)

CVE-2026-6248: The wpForo Forum plugin Remote code execution

The wpForo Forum plugin remote code execution (CVE-2026-6248) scores CVSS 8.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6568 - CVSS N/A (HIGH)

CVE-2026-6568 Analysis: CVSS 7.3 HIGH

A vulnerability was determined directory traversal (CVE-2026-6568) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6602 - CVSS N/A (HIGH)

CVE-2026-6602 Analysis: CVSS 7.3 HIGH

A vulnerability was found vulnerability (CVE-2026-6602) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6596 - CVSS N/A (HIGH)

CVE-2026-6596 Analysis: CVSS 7.3 HIGH

CVE-2026-6596 scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-5966 - CVSS N/A (HIGH)

CVE-2026-5966: ThreatSonar Anti-Ransomware developed by Dire

ThreatSonar Anti-Ransomware developed by directory traversal (CVE-2026-5966) scores CVSS 8.1 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6581 - CVSS N/A (HIGH)

CVE-2026-6581 Analysis: CVSS 8.8 HIGH

A vulnerability was detected buffer overflow (CVE-2026-6581) scores CVSS 8.8 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6605 - CVSS N/A (HIGH)

CVE-2026-6605 Analysis: CVSS 7.3 HIGH

CVE-2026-6605 scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6604 - CVSS N/A (HIGH)

CVE-2026-6604 Analysis: CVSS 7.3 HIGH

A vulnerability was identified vulnerability (CVE-2026-6604) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6603 - CVSS N/A (HIGH)

CVE-2026-6603 Analysis: CVSS 7.3 HIGH

A vulnerability was determined code injection (CVE-2026-6603) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6569 - CVSS N/A (HIGH)

CVE-2026-6569 Analysis: CVSS 7.3 HIGH

A vulnerability was identified vulnerability (CVE-2026-6569) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6580 - CVSS N/A (HIGH)

CVE-2026-6580: A security vulnerability has Vulnerability |

A security vulnerability has vulnerability (CVE-2026-6580) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

CVE-2026-6574 - CVSS N/A (HIGH)

CVE-2026-6574 Analysis: CVSS 7.3 HIGH

A vulnerability has been vulnerability (CVE-2026-6574) scores CVSS 7.3 HIGH. Analysis of affected systems and remediation steps.

Read Full Analysis

Security Roundup: April 19 to April 26, 2026

Critical findings