Weekly Cybersecurity Bulletin: Major Flaws and Breaches Uncovered

This week’s cybersecurity landscape has been marked by the discovery of longstanding vulnerabilities and significant breaches, underscoring the persistent challenges in digital security.

Decade-Old Linux Kernel Vulnerabilities

Two critical vulnerabilities have been identified in the Linux kernel, both remaining undetected for over a decade. The first, a 16-year-old flaw in the Kernel-based Virtual Machine (KVM), allows malicious guests to corrupt host kernel memory, potentially leading to full guest-to-host escapes with root privileges. This vulnerability, known as “Januscape” and tracked as CVE-2026-53359, affects both Intel and AMD platforms and was actively exploited as a zero-day in Google’s kvmCTF before its disclosure.

The second vulnerability, a 15-year-old kernel privilege escalation flaw, poses a significant risk by enabling unauthorized users to gain elevated access, compromising system integrity and data security.

Ubiquiti’s UniFi Ecosystem Vulnerabilities

Ubiquiti has disclosed 25 vulnerabilities across its UniFi ecosystem. Among these, CVE-2026-50746 stands out with a perfect 10.0 severity rating. This command injection flaw in UniFi Connect is exploitable without authentication, posing a critical risk. Other vulnerabilities include SQL injection, Server-Side Request Forgery (SSRF), and access control issues across UniFi Talk, Access, and Protect platforms.

Accenture Data Breach Allegations

A threat actor known as “888” claims to have stolen 35 GB of source code from Accenture. If confirmed, this breach could have significant implications for the company’s operations and client data security.

Android 17 One-Click Root Exploit

A new exploit targeting Android 17 devices has emerged, allowing attackers to gain root access with a single click. This vulnerability poses a severe threat to user data and device integrity, emphasizing the need for prompt security updates.

Air-Gap Data Theft via TrojPix

Researchers have unveiled “TrojPix,” a novel electromagnetic covert-channel attack capable of exfiltrating data from air-gapped computers up to 208 meters away. By exploiting pixel-level HDMI signal leakage, this technique achieves a peak throughput of 8.1 Mbps with near-100% accuracy, all while remaining invisible to the human eye.

Additional Vulnerabilities and Updates

  • PHP Flaws: Two vulnerabilities, CVE-2026-12184 and CVE-2026-14355, have been identified in PHP, allowing attackers to trigger denial-of-service conditions and memory corruption in web applications.
  • Microsoft Edge RCE Flaw: CVE-2026-57992, a Use-After-Free vulnerability in Edge’s Chromium engine, can lead to remote code execution when a victim visits a malicious page and performs specific actions. No official patch is available yet.
  • OpenSSH 10.4 Release: The latest OpenSSH release addresses multiple vulnerabilities, including a malicious-server file redirection flaw in sftp and an scp path traversal issue. It also introduces experimental post-quantum cryptography support.

These developments highlight the critical importance of proactive vulnerability management and timely patching. Organizations must remain vigilant, regularly updating systems and educating users to mitigate the risks posed by both longstanding and emerging threats.