April 30, 2026—KB5083631 (OS Builds 26200.8328 and 26100.8328) Preview

April 30, 2026—KB5083631 OS Builds 26200.8328 and 26100.8328 Preview ​​​​This non-security update for Windows 11, version 25H2 and 24H2 KB5083631, includes production-quality improvements. To learn more about differences between security updates, optional non-security preview updates, out-of-band...

PT-2026-36176

Name of the Vulnerable Software and Affected Versions Secure Access Windows client versions prior to 14.50 Description A buffer overflow occurs in the software, which allows attackers with local control of the Windows client to cause a system crash, resulting in a blue screen. Recommendations...

Absolute Secure Access Windows client 资源管理错误漏洞

Absolute Secure Access Windows client is a security access control client developed by Absolute Corporation. Versions of Absolute Secure Access Windows client prior to version 14.50 contain a resource management vulnerability caused by memory corruption. This vulnerability could allow local...

PT-2026-36170

Name of the Vulnerable Software and Affected Versions Secure Access client for MacOS versions prior to 14.50 Description A format string issue exists in the logging subsystem. Attackers controlling a modified server can force the client to dump small portions of memory into log files, which may...

Absolute Secure Access 安全漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a security vulnerability caused by a buffer overflow in the messag...

Absolute Secure Access 安全漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for both mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a security vulnerability caused by a buffer overflow, which...

PT-2026-36181

Name of the Vulnerable Software and Affected Versions Secure Access server versions prior to 14.50 Description A buffer overflow occurs when a program writes more data to a block of memory than it can hold. In this case, attackers using a modified client can send a specially crafted message to th...

Absolute Secure Access 安全漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a security vulnerability caused by a buffer overflow in the messag...

PT-2026-36173

Name of the Vulnerable Software and Affected Versions Secure Access client versions prior to 14.50 Description A buffer overflow exists in a message handling function of the client. Attackers controlling a modified server can send a cryptographically valid message to overwrite a small portion of...

PT-2026-36175

Name of the Vulnerable Software and Affected Versions Secure Access Windows client versions prior to 14.50 Description An arbitrary read/write issue exists where attackers with local control of the Windows client can send malformed data to an API to elevate their privileges to system level...

PT-2026-36100

CVE-2026-31431 is another reminder that one unpatched vulnerability can turn a small foothold into full system compromise. For businesses running remote teams, cloud workloads, or distributed infrastructure, secure access and layered protection matter more than ever. Patch fast. Limit exposure...

PT-2026-36174

Name of the Vulnerable Software and Affected Versions Secure Access MacOS client versions prior to 14.50 Description An out of bounds read occurs when attackers controlling a modified server send a malformed packet to the client, resulting in a denial of service. Recommendations Update to version...

PT-2026-36169

Name of the Vulnerable Software and Affected Versions Secure Access client versions prior to 14.50 Description A buffer overflow exists in a message parsing function of the client. Attackers controlling a modified server can send a specially crafted packet to overwrite a small portion of memory,...

Absolute Secure Access 缓冲区错误漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a buffer error vulnerability. This vulnerability could lead to...

PT-2026-36168

Name of the Vulnerable Software and Affected Versions Secure Access client versions prior to 14.50 Description A buffer overflow exists in the authentication sub-system. Attackers controlling a modified server can send a specially crafted packet to overwrite a small portion of memory, which may...

PT-2026-36182

Name of the Vulnerable Software and Affected Versions Secure Access Windows clients versions prior to 14.50 Description A memory corruption issue exists where attackers with local control of the Windows client can send malformed data to an API to trigger a denial of service. Recommendations Updat...

PT-2026-36180

Name of the Vulnerable Software and Affected Versions Secure Access Windows client versions prior to 14.50 Description A buffer overflow occurs in the Secure Access Windows client. Attackers with local control of the client can exploit this to trigger a denial of service DoS, which is a condition...

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: nvme: fix memory allocation in nvmeprreadkeys CVE-2026-23244 In the Linux kernel, the following vulnerability has been resolved: net/sched: actgate: snapshot parameters with RCU on replace CVE-2026-23245 In the...

GNU Transport Layer Security Library 3.8.13

GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS 12, OpenPGP, and other...

n8n has Prototype Pollution in XML Webhook Body Parser that Leads to RCE

Impact A flaw in the xml2js library used to parse XML request bodies in n8n's webhook handler allowed prototype pollution via a crafted XML payload. An authenticated user with permission to create or modify workflows could exploit this to pollute the JavaScript object prototype and, by chaining t...