CVE-2026-12569
PTC Windchill and FlexPLM are vulnerable to improper input validation, allowing for potential exploitation. This vulnerability is confirmed as actively exploited in the wild.
Critical vulnerabilities, curated daily for security professionals
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Thursday's brief is led by a concentration of CVSS 9.8 flaws in Guardian's language-system (CVE-2026-34099 through CVE-2026-34105) and a critical Control Web Panel vulnerability (CVE-2026-57517), alongside a maximum-severity CVSS 10 issue in Hoppscotch (CVE-2026-50160). The set includes 28 critical CVEs, down 28% from the prior day's 39, and 78 high-priority CVEs, up 18% from 66. Additional critical exposure spans Hyland PACSgear PACS Scan (CVE-2026-58126, CVSS 9.8), extending risk into healthcare imaging infrastructure. Remote code execution and authentication bypass dominate the disclosed set, with web-facing management panels, developer tooling, and enterprise communications platforms among the affected products. No vendor patches were flagged as available at disclosure, so defenders should prioritize compensating controls and monitor vendor advisories for forthcoming fixes.
Immediate action: Prioritize the Guardian language-system, Control Web Panel, and Hoppscotch deployments given their maximum-severity ratings, and isolate internet-facing management interfaces and healthcare imaging systems such as Hyland PACSgear pending fixes. With no patches available at disclosure, apply network segmentation, access restrictions, and heightened monitoring while tracking vendor advisories; separately, expedite remediation on the actively exploited Cisco Unified CM, SimpleHelp, PTC Windchill, and SharePoint flaws.
PTC Windchill and FlexPLM are vulnerable to improper input validation, allowing for potential exploitation. This vulnerability is confirmed as actively exploited in the wild.
A server-side request forgery (SSRF) vulnerability in Cisco Unified Communications Manager allows unauthenticated remote attackers to perform arbitrary file operations and escalate privileges to root.
SimpleHelp contains an authentication bypass in the OIDC flow, allowing unauthenticated attackers to forge tokens and gain full technician access without multi-factor authentication.
An insecure deserialization vulnerability in Microsoft Office SharePoint allows an authorized attacker to execute arbitrary code over a network.
Control Web Panel is vulnerable to unauthenticated blind SQL injection, allowing remote attackers to achieve remote code execution via arbitrary file writes.
The Guardian language-system is affected by an unauthenticated error-based SQL injection vulnerability in job_info.php, allowing unauthorized database content extraction.
The Guardian language-system contains an authenticated error-based SQL injection vulnerability in media.php, allowing an attacker to extract database contents.
Guardian language-system is vulnerable to error-based SQL injection via the 'id' GET parameter in text_file.php, allowing authenticated attackers to extract sensitive database contents.
Guardian language-system contains an error-based SQL injection vulnerability in job_info_get.php, where the 'id' parameter is processed without proper sanitization.
Guardian language-system is vulnerable to error-based SQL injection in subtitles.php, stemming from the unsanitized 'id' GET parameter.
The Guardian language-system is vulnerable to error-based SQL injection via the 'name' GET parameter in designer.php, allowing authenticated attackers to extract database contents.
The Guardian language-system contains an error-based SQL injection vulnerability in translate_text.php, allowing authenticated users to extract database contents via the 'id' GET parameter.
Hyland PACSgear PACS Scan is vulnerable to unauthenticated remote code execution via a .NET Remoting TCP service, allowing attackers to gain SYSTEM-level access through DLL hijacking.
An unauthenticated mass assignment vulnerability in the Hoppscotch backend allows attackers to overwrite critical configuration secrets and forge administrative JWT tokens.
The Guardian language-system is vulnerable to unauthenticated remote code execution due to improper sanitization of the 'id' parameter in text.php.
The Guardian language-system is vulnerable to unauthenticated remote code execution due to improper sanitization of the 'id' parameter in speech.php.
An unauthenticated command injection vulnerability in complex_start.php allows remote attackers to execute arbitrary OS commands via the 'id' parameter.
An unauthenticated command injection vulnerability in speechmac_text.php allows remote attackers to execute arbitrary OS commands via the 'id' parameter.
An unauthenticated command injection vulnerability in speechmac.php allows remote attackers to execute arbitrary OS commands via the 'id' parameter.
An unauthenticated command injection vulnerability exists in the speech_text.php file of the Guardian language-system due to improper sanitization of the id parameter.
An unauthenticated command injection vulnerability exists in the translate_text.php file of the Guardian language-system due to improper sanitization of the id parameter.
An unauthenticated command injection vulnerability exists in the transcribe_amazon.php file of the Guardian language-system due to improper sanitization of the id parameter.
A critical OS command injection vulnerability exists in the transcribe.php script of the Guardian language-system, allowing unauthenticated remote code execution.
A critical OS command injection vulnerability exists in the text_to_subtitles.php script of the Guardian language-system, allowing unauthenticated remote code execution.
A critical OS command injection vulnerability exists in the subtitles.php script of the Guardian language-system, allowing unauthenticated remote code execution.
An unauthenticated remote command injection vulnerability exists in the language-system translate.php script, allowing attackers to execute arbitrary OS commands via the id parameter.
Hyland PACSgear MediaWriter is vulnerable to unauthenticated remote code execution via a .NET Remoting TCP service, allowing arbitrary file read/write and SYSTEM-level privilege escalation.
JAIOTlink C492A-W6 IP cameras contain hard-coded default credentials that allow network-adjacent attackers to gain unauthorized administrative access.
The Shenzhen Aitemi M300 Wi-Fi Repeater is vulnerable to unauthenticated OS command injection via the smacfilter_conf handler, allowing remote attackers to execute arbitrary shell commands as root.
The HTML::Gumbo Perl module is vulnerable to heap memory disclosure due to type confusion when processing the <template> element, leading to unauthorized data exposure.
The NVIDIA AIStore framework contains an authentication bypass vulnerability that could lead to unauthorized access, privilege escalation, and data tampering.
LCweb PrivateContent is vulnerable to an incorrect privilege assignment flaw, potentially allowing an attacker to escalate privileges within the application.
A use-after-free vulnerability in the V8 JavaScript engine of Google Chrome allows for potential arbitrary code execution.
A use-after-free vulnerability in the V8 engine of Google Chrome allows for memory corruption and potential code execution.
A use-after-free vulnerability exists in the V8 engine of Google Chrome, potentially allowing remote code execution.
A use-after-free vulnerability in the Ozone component of Google Chrome may lead to memory corruption and potential system compromise.
A use-after-free vulnerability exists in the Fullscreen implementation of Google Chrome for Android, potentially allowing remote code execution.
A use-after-free vulnerability exists in the GFX component of Google Chrome on macOS, potentially allowing for arbitrary code execution or system instability.
A use-after-free vulnerability in the Input Method Editor (IME) of Google Chrome may allow remote attackers to execute arbitrary code via a specially crafted website.
A use-after-free vulnerability in the Blink rendering engine of Google Chrome could lead to arbitrary code execution if successfully exploited.
A use-after-free vulnerability in the Canvas component of Google Chrome allows for potential memory corruption and arbitrary code execution.
A use-after-free vulnerability in the Chromoting component of Google Chrome for Linux allows for potential memory corruption and arbitrary code execution.
A use-after-free vulnerability in the Document Object Model (DOM) of Google Chrome allows for potential memory corruption and arbitrary code execution.
A Use-After-Free vulnerability exists in the Forms component of Google Chrome prior to version 150, potentially allowing for arbitrary code execution.
A Use-After-Free vulnerability exists in the WebView component of Google Chrome on Android prior to version 150, which may lead to remote code execution.
A Use-After-Free vulnerability exists in the Skia graphics library within Google Chrome on Android prior to version 150, potentially allowing for arbitrary code execution.
A use-after-free vulnerability exists in the Google Chrome Extensions component, potentially allowing remote code execution or application crashes.
A use-after-free vulnerability in the Google Chrome Cast Receiver component could allow an attacker to trigger memory corruption and potentially execute arbitrary code.
A use-after-free vulnerability in the Google Chrome HTML rendering engine could allow an attacker to trigger memory corruption and potentially execute arbitrary code.
A use-after-free vulnerability in Google Chrome for iOS allows remote attackers to potentially exploit memory corruption.
A use-after-free vulnerability exists in Google Chrome for iOS, which could allow for memory corruption and potential code execution.
A use-after-free vulnerability in the Oilpan garbage collection component of Google Chrome allows for potential memory corruption.
A heap buffer overflow vulnerability exists within the V8 engine of Google Chrome, potentially allowing for arbitrary code execution.
A use-after-free vulnerability in the Omnibox component of Google Chrome for Android may allow for unauthorized memory access or code execution.
A use-after-free vulnerability in the Navigation component of Google Chrome could allow an unauthenticated attacker to cause memory corruption or arbitrary code execution.
A use-after-free vulnerability exists in the Ozone component of Google Chrome on Linux, potentially allowing for arbitrary code execution.
A use-after-free vulnerability in the Views component of Google Chrome on macOS may allow an attacker to trigger memory corruption and execute arbitrary code.
A use-after-free vulnerability in the SignIn component of Google Chrome could allow an unauthenticated attacker to execute arbitrary code.
A use-after-free vulnerability exists in the BrowserTag component of Google Chrome, potentially allowing for arbitrary code execution.
A use-after-free vulnerability in Google Chrome for iOS may allow an attacker to trigger memory corruption and execute arbitrary code.
A heap buffer overflow vulnerability in the WebNN component of Google Chrome on Windows could allow for memory corruption and code execution.
A use-after-free vulnerability exists in the DevTools component of Google Chrome prior to version 150, potentially allowing for arbitrary code execution.
A use-after-free vulnerability in Google Chrome for iOS prior to version 150 may allow an attacker to trigger memory corruption on mobile devices.
A use-after-free vulnerability exists in the Passwords management component of Google Chrome prior to version 150, posing a risk of memory corruption.
A use-after-free vulnerability exists in the Scheduling component of Google Chrome, potentially allowing for arbitrary code execution.
A use-after-free vulnerability in the PDFium library within Google Chrome may allow an attacker to execute arbitrary code.
A use-after-free vulnerability exists in the Audio component of Google Chrome on Linux, potentially allowing for arbitrary code execution.
An inappropriate implementation vulnerability exists within the V8 JavaScript engine in Google Chrome prior to version 150.
An out-of-bounds write vulnerability exists in the V8 engine of Google Chrome prior to version 150, potentially allowing for arbitrary code execution.
An inappropriate implementation vulnerability exists in the V8 engine of Google Chrome prior to version 150, impacting overall browser security.
An integer overflow vulnerability exists in the V8 engine of Google Chrome, potentially allowing for arbitrary code execution.
A type confusion vulnerability in the V8 engine of Google Chrome may allow remote attackers to execute arbitrary code via a crafted webpage.
Google Chrome on iOS is susceptible to an input validation vulnerability in the iOSWeb component, potentially leading to unauthorized operations.
Google Chrome contains a vulnerability in the Glic component due to insufficient validation of untrusted input, which could lead to security compromises.
Google Chrome is susceptible to an uninitialized use vulnerability in the Dawn component, which may lead to memory corruption or arbitrary code execution.
Google Chrome contains an inappropriate implementation in its XML processing engine, which could be leveraged to cause security-related issues.
Google Chrome for iOS contains a vulnerability involving insufficient validation of untrusted input, which could lead to security compromises.
An integer overflow vulnerability exists in the Chromecast component of Google Chrome, potentially allowing for memory corruption or unauthorized system behavior.
Google Chrome contains a vulnerability involving insufficient policy enforcement within the Chromecast component, potentially allowing unauthorized access or feature execution.
Google Chrome contains a vulnerability involving insufficient policy enforcement within its Bluetooth implementation, potentially allowing for security bypasses.
Google Chrome contains a vulnerability involving insufficient validation of untrusted input within its Enterprise module, potentially leading to security compromises.
Google Chrome contains a vulnerability involving an inappropriate implementation within its password management functionality, which may lead to security risks.
Google Chrome contains a vulnerability involving insufficient policy enforcement within its Bluetooth implementation, potentially allowing for unauthorized access or bypasses.
Google Chrome contains a vulnerability involving insufficient policy enforcement within the Serial API, potentially allowing for unauthorized hardware access or data transmission.
Google Chrome contains a vulnerability involving the insufficient validation of untrusted input within WebRTC, potentially leading to memory corruption or other exploitable conditions.
Google Chrome contains a vulnerability in Chromoting due to insufficient validation of untrusted input, which could allow for security bypasses.
Google Chrome suffers from insufficient policy enforcement in the HID (Human Interface Device) component, which may allow for restricted actions.
Google Chrome contains a vulnerability in WebAppInstalls due to insufficient validation of untrusted input, potentially allowing malicious application installation.
Google Chrome on Windows contains a vulnerability in the Chromoting component due to insufficient validation of untrusted input.
The LatePoint Calendar Booking plugin for WordPress is vulnerable to privilege escalation, allowing attackers to gain unauthorized administrative access.
The GeoVision GeoWebPlayer addon, used in various VMS and Cloud products, contains a high-severity vulnerability potentially leading to unauthorized system access.
A security vulnerability exists in Ray prior to version 2, potentially allowing unauthorized actions or system compromise.
JAIOTlink C492A-W6 Wi-Fi IP cameras running firmware version 4 contain a security vulnerability that may lead to unauthorized access.
A security vulnerability has been identified in the Foreman component of Red Hat Satellite 6.16 for RHEL 8, which could lead to unauthorized system access.
Craft CMS is vulnerable to a security flaw that could potentially lead to unauthorized system access or data compromise.
The NVIDIA Container Toolkit for Linux is susceptible to a time-of-check time-of-use (TOCTOU) race condition that could be exploited by an attacker.
The containerd container runtime is affected by a security vulnerability that may impact the integrity and security of containerized environments.
A high-severity vulnerability exists within the GeoVision GeoWebPlayer plugin, potentially allowing unauthorized access or system impact.
A high-severity security vulnerability has been identified in the GeoVision GeoWebPlayer plugin, which is integrated into various GeoVision software suites.
A high-severity vulnerability in the GeoVision GeoWebPlayer plugin may expose integrated software products to unauthorized exploitation.
A security vulnerability exists in the GeoVision GeoWebPlayer addon, potentially allowing for unauthorized system interaction.
A security vulnerability exists in the GeoVision GeoWebPlayer addon, potentially allowing for unauthorized system interaction.
A security vulnerability exists in the GeoVision GeoWebPlayer addon, potentially allowing for unauthorized system interaction.
A security vulnerability exists in the GeoVision GeoWebPlayer addon, potentially allowing for unauthorized system impact.
A security vulnerability in the GeoVision GeoWebPlayer addon poses a high risk to the integrity and security of the host software environment.
A critical security vulnerability has been identified in the GeoVision GeoWebPlayer addon, requiring immediate attention to secure the affected environment.
A high-severity vulnerability exists in the GeoWebPlayer addon for GeoVision software, potentially allowing for unauthorized system impact.
A high-severity security vulnerability has been identified in the GeoVision GeoWebPlayer, requiring immediate attention to prevent potential exploitation.
A high-severity vulnerability in the GeoVision GeoWebPlayer addon necessitates urgent review and remediation to secure the affected management software.
The @acastellon/auth module contains a vulnerability in its authentication control system for microservices that may allow for unauthorized access.