Published threat advisories for May 7, 2026

An internal attacker with limited access can exploit a flaw in Argo CD to steal sensitive system credentials. This vulnerability could allow them to impersonate trusted accounts and gain unauthorized control over critical cloud infrastructure.

NVD published: May 7, 2026

Mendix Studio Pro apps can expose sensitive customer data to anyone due to an authorization misconfiguration. This allows anonymous users to access all stored records, even without permissions.

NVD published: May 7, 2026

A critical flaw in Microsoft Azure AI Foundry agents lets anyone on the internet take over the service and access sensitive data. This requires immediate attention.

NVD published: May 7, 2026

A critical issue in Microsoft Azure Cloud Shell lets attackers impersonate users and control your cloud services. This command injection vulnerability is accessible over the internet and could lead to significant compromise.

NVD published: May 7, 2026

An internal attacker with existing access to Azure Managed Instance for Apache Cassandra could run unauthorized code. This allows them to change system settings or access sensitive application data, potentially compromising the entire database environment.

NVD published: May 7, 2026

An internal attacker with network access could exploit a flaw in Azure Managed Instance for Apache Cassandra to run unauthorized commands. This could allow them to take control of the service and potentially gain access to sensitive business data.

NVD published: May 7, 2026

A critical flaw in GitPython lets attackers run code on your systems when cloning repositories, potentially exposing sensitive data and systems. Update GitPython now to version 3.1.47 or later to stay protected.

NVD published: May 7, 2026

FreeScout allows anyone to take over any account if they obtain a leaked invite link because setup links never expire, potentially leading to full system compromise. This issue is patched in version 1.8.217.

NVD published: May 7, 2026

An external attacker can exploit a flaw in the Snipe-IT asset management system to remotely run unauthorized commands on the server. This could lead to a full compromise of the system and exposure of sensitive corporate asset inventory data.

NVD published: May 7, 2026

Yarbo lawn mowers can be remotely controlled by anyone on your network due to a security flaw, allowing unauthorized access to robot data and commands.

NVD published: May 7, 2026

Yarbo firmware uses identical, unchangeable administrative passwords that allow an external attacker to bypass security and gain management access. This enables full administrative control over the device, risking unauthorized configuration changes and the theft of sensitive data.

NVD published: May 7, 2026

A hidden backdoor in Yarbo firmware allows an external attacker to bypass security measures and take full control of the device over the internet. This creates a severe business risk, as the flaw is persistent and could allow unauthorized parties to establish permanent, undetected access to your infrastructure.

NVD published: May 7, 2026

Ivanti EPMM has a critical flaw allowing remote attackers to enroll devices, potentially exposing sensitive information and compromising device identities. This requires immediate attention as it affects device management security.

NVD published: May 7, 2026

Ivanti EPMM has a critical flaw that lets attackers remotely control your systems and data without needing any login. This is urgent because it could expose your organization to significant risks.

NVD published: May 7, 2026

An attacker can impersonate Ivanti EPMM servers to steal legitimate client certificates, potentially compromising sensitive data and mobile device management. This is a critical vulnerability due to its internet-facing exposure and unauthenticated remote attack possibility.

NVD published: May 7, 2026

The NPM package query-string-parser has a critical flaw that lets attackers corrupt data or take control of your application by manipulating web requests. Address this now to prevent potential system compromise.

NVD published: May 7, 2026

An external attacker can exploit the parse-ini library to manipulate application data and behavior, potentially bypassing security controls to gain unauthorized access. This could lead to sensitive information exposure or unauthorized changes to core business functions.

NVD published: May 7, 2026

An external attacker can impersonate trusted services by bypassing security checks with fake certificates. This could lead to the exposure of sensitive credentials, impacting business operations and trust.

NVD published: May 7, 2026

An internal attacker with administrative access to ChestnutCMS can exploit a system flaw to run unauthorized database commands. This enables them to steal sensitive business information, such as user credentials and site configuration data.

NVD published: May 7, 2026

The next-npm-version package contains a flaw that allows an external attacker to execute unauthorized commands on host servers. This exposure could grant the attacker access to sensitive environment variables, proprietary source code, or control over the application environment.

NVD published: May 7, 2026

An external attacker can exploit a flaw in DivvyDrive to redirect users to malicious websites, increasing the success of phishing campaigns. This facilitates the theft of sensitive user credentials and session tokens, which could lead to unauthorized access to company accounts.

NVD published: May 7, 2026

A critical flaw in the Wish SSH server lets attackers read or write any file, potentially exposing sensitive data or letting them alter systems. This needs immediate attention because SSH servers are often internet-facing.

NVD published: May 7, 2026

An internal attacker on the local network can gain full remote control over the Optoma CinemaX P2 projector due to missing security checks. This could allow unauthorized changes to projector settings and enable further access into your network, potentially disrupting business operations.

NVD published: May 7, 2026

An external attacker can exploit a vulnerability in the Firefox ESR and Thunderbird media processing component to take control of a user's browser. This could allow them to steal sensitive data or install malicious software, posing a risk to both user workstations and company information.

NVD published: May 7, 2026

A critical flaw in Firefox and Thunderbird allows attackers to run malicious code on your computer through audio or video playback, potentially leading to system takeover. Update now to protect your data and services.

NVD published: May 7, 2026

An internal attacker could exploit a flaw in Liderahenk to bypass security checks and access restricted management functions. This allows them to manipulate system configurations, potentially resulting in full administrative control over connected infrastructure.

NVD published: May 7, 2026

An external attacker can bypass login security in GnuTLS software by using specially crafted usernames. This flaw allows unauthorized access to sensitive company data and protected services.

NVD published: May 7, 2026

An external attacker could exploit a flaw in Hitachi Storage Navigator to gain control of critical storage systems, potentially resulting in data loss or operational disruption. This vulnerability allows unauthorized commands to be run on the hardware, creating a significant risk to business operations.

NVD published: May 7, 2026

A critical flaw in Hitachi Virtual Storage Platform One Block allows unauthorized users to run commands, potentially giving attackers full control over your company's sensitive data.

NVD published: May 7, 2026

An internal attacker can exploit a flaw in Hyperledger Fabric to gain administrative control over the platform. This creates a severe business risk, as it allows unauthorized access to sensitive data and could lead to the compromise of ledger integrity or total operational failure.

NVD published: May 7, 2026

Tor has a critical flaw that could crash it or expose sensitive data, affecting anyone using it for anonymity and requiring immediate attention to update the software.

NVD published: May 7, 2026

An internal attacker with theme management permissions can exploit a file upload flaw in CI4MS to place malicious code on the server. This could allow them to gain full control of the application and access sensitive system areas.

NVD published: May 7, 2026

An internal attacker with access to CI4MS backup tools could upload malicious files to take full control of the server. This allows unauthorized command execution and could lead to a complete system compromise.

NVD published: May 7, 2026

An attacker can fully take over accounts and gain admin control in CI4MS by tricking users with malicious backup filenames, potentially exposing sensitive data. A patch is available.

NVD published: May 7, 2026

An issue in Spring Cloud Config allows an external attacker to read private server files. This flaw could expose sensitive credentials or API keys, potentially enabling unauthorized access to our backend services.

NVD published: May 7, 2026

A flaw in Tor could let attackers disrupt services or access sensitive data by sending malformed network messages. This issue is particularly concerning because Tor relays are designed to be accessible from the internet.

NVD published: May 7, 2026