Exploits and vulnerabilities in Q1 2026

Q1 2026 intelligence summarizing an increase in registered CVEs (driven in part by AI-assisted discovery), exploitation statistics for Windows and Linux, and the vulnerabilities most frequently used in APT attacks. The report lists veteran and newly observed exploited CVEs (including Office/Windows logic-bypass and privilege-escalation flaws), details C2 framework usage (Metasploit, Sliver, Havoc, etc.), highlights notable issues in AI/LLM tooling (Clawdbot, LangChain, OpenCode), and recommends timely patching and deployment of continuous protective measures.