NVD disclosure day

Published threat advisories for March 30, 2026

CVE-2026-3502

TrueConf Client could allow an external attacker to gain control of your computer.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A flaw in the TrueConf Client update process allows an external attacker to intercept connections and install malicious software. This provides the attacker full control over the computer, creating a critical risk of data theft and unauthorized system access.

NVD published: March 30, 2026 • CISA KEV

CVE advisoryHIGH

CVE-2026-5121

Libarchive flaw allows attackers to execute code by sending malicious files.

Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.

A critical flaw in libarchive could allow attackers to run their own code on your systems by sending a specially crafted file, a serious risk for any system that processes ISO9660 images.

NVD published: March 30, 2026