Kaspersky's Q1 2026 vulnerability landscape report covers rising CVE registration trends driven by AI-assisted security research, exploitation statistics for Windows and Linux, and APT attack patterns. Veteran vulnerabilities like CVE-2018-0802 and CVE-2017-11882 remain heavily exploited alongside new logic-flaw vulnerabilities in Microsoft Office (CVE-2026-21509, CVE-2026-21513, CVE-2026-21514). Metasploit reclaimed the top spot among C2 frameworks used in APT attacks, displacing Sliver. Notable new vulnerabilities include a Desktop Window Manager privilege escalation (CVE-2026-21519), a registry-based privilege escalation dubbed RegPwn, and AI-related vulnerabilities in OpenClaw, LangChain, and OpenCode that expose credentials and allow command execution. The report recommends timely patch deployment and robust vulnerability management.
Table of contents
Statistics on registered vulnerabilitiesExploitation statisticsVulnerability exploitation in APT attacksC2 frameworksNotable vulnerabilitiesConclusion and adviceSort: