Microsoft - Semantic-kernel - CRITICAL - CVE-2026-26030. The Semantic Kernel Python SDK from Microsoft contains a flaw within the `InMemoryVectorStore` filter functionality that may allow an attacker to execute arbitrary code remotely. This vulnerability impacts versions of the SDK released prior to 1.39.4. Users are strongly advised to upgrade to version 1.39.4 or later to mitigate this risk. As an alternative measure, it is recommended to avoid utilizing the `InMemoryVectorStore` in production environments until the upgrade is applied. For more detailed information, please refer to the relevant security advisories and release notes.