This week's burn-down
5 new fixes landed this week.
None are ransomware-linked yet, but they're worth clearing before they get there. Newest at the top.
- CVE-2026-25089Patch this week
Fortinet FortiSandbox OS Command Injection Vulnerability
- CVE-2026-39808Patch this week
Fortinet FortiSandbox OS Command Injection Vulnerability
- CVE-2026-58644Patch this week
Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
- CVE-2026-15409Patch this week
SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability
- CVE-2026-15410Patch this week
SonicWall SMA1000 Appliances Code Injection Vulnerability
- CVE-2026-48282Patch this week
Start here
What to patch first.
160 of these vulnerabilities are actively used in ransomware attacks. Start with these — they're the ones criminals are exploiting right now.
- Patch now160used in ransomware
- Patch this week182critical, or high-severity on internet-facing gear
- Plan to patch422the working backlog
- Monitor55low urgency, fix on next maintenance
Microsoft updates
One Windows Update run clears all of these.
Windows updates are cumulative: the newest one includes every fix that came before it. Run Windows Update on your machines and everything below is covered. The KB numbers are the receipts, not a to-do list.
- KB5053618covered 7 actively-exploited CVEs
- KB5053594covered 7 actively-exploited CVEs
- KB5053886covered 7 actively-exploited CVEs
Not sure where to start
You don't have to triage 819 vulnerabilities yourself.
We watch this list daily and tell you which ones touch the software you actually run. Free 30-minute briefing — share what you have, get a prioritized short list back, and we tell you when you don't need us.
