In April 2026, a total of 37 high-impact vulnerabilities were identified, with 35 of them having a Very Critical risk score, marking a 19% increase from the previous month. Notably, 31 of these vulnerabilities were included in the US Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, while six were discovered through honeypot data, accessible only to Recorded Future customers. These vulnerabilities affected products from 23 different vendors, including Microsoft. The significant increase in high-impact vulnerabilities highlights the need for prompt remediation efforts. The fact that most of these vulnerabilities have been included in the CISA's KEV catalog underscores their potential for exploitation1. This surge in high-risk vulnerabilities matters to security practitioners because it necessitates swift prioritization and patching to prevent potential attacks.
April 2026 CVE Landscape
⚡ High Priority
Why This Matters
In April 2026, Insikt Group® identified 37 high-impact vulnerabilities that should be prioritized for remediation , 35 of which had a Very Critical Recorded Future Risk Score.
References
- Recorded Future. (2026, May 15). April 2026 CVE Landscape. Recorded Future. https://www.recordedfuture.com/blog/april-cve-landscape
Original Source
Recorded Future
Read original →