What you need to know today.

CISA warns of critical RCE in AVer PTZ cameras, while Mitsubishi PLC modules face DoS flaws. CVE-2026-40624 (CVSS 9.8) affects AVer PTC500S, PTC115, PTC500+, and PTC115+ cameras — a remote, unauthenticated attacker can achieve arbitrary code execution via a specially crafted web request due to improper input validation. CISA's advisory notes these cameras are used in education, government, and enterprise video-conferencing environments. No public PoC or active exploitation has been reported yet, but the critical severity and network-exposed attack surface make immediate patching urgent. Separately, Mitsubishi Electric disclosed two high-severity DoS vulnerabilities in the MELSEC iQ-F Series FX5-ENET/IP Ethernet Module: CVE-2026-8806 (expected behavior violation) and CVE-2026-8805 (integer overflow/wraparound), both remotely exploitable without authentication. As CISA's ICS advisory details, these affect industrial control environments where availability is paramount.

Gitea discloses ten CVEs in a single batch, including stored XSS via 3D file viewer. CVE-2026-28737 (high severity) allows stored cross-site scripting through crafted .gltf files in Gitea's built-in 3D file viewer powered by Online3DViewer. When a glTF file declares an unsupported required extension, the viewer processes it unsafely, enabling attackers to inject arbitrary JavaScript. As Vypr Intelligence reported, this is part of a broader disclosure of ten CVEs, seven of which are high-severity token-scope and auth bypass flaws. Organizations running self-hosted Gitea instances should prioritize patching, as the XSS vector can be triggered simply by viewing a malicious repository's file.

Open WebUI discloses 16 CVEs in a single batch, with SSRF bypassing earlier fixes. CVE-2026-54018 (high severity) affects the SafePlaywrightURLLoader component, which implements a validate_url function to prevent SSRF attacks by checking the IP address of the user-provided URL. However, this validation is performed only on the initial URL — since Playwright automatically follows redirects, an attacker can bypass the check by hosting a redirect from a safe URL to an internal IP. As Vypr Intelligence noted, this is one of 16 CVEs disclosed in a single-day batch, many of which bypass earlier patches. Open WebUI deployments should update immediately given the breadth of the disclosure.

Critical auth bypass and XSS flaws hit Kirby CMS, Jupyter Server, and Avo HQ. CVE-2026-54003 (critical) affects Kirby sites with no configured user accounts running behind a reverse proxy that sets Forwarded, X-Client-IP, or X-Real-IP headers — enabling unauthenticated access. Three additional Kirby CVEs (CVE-2026-54005, CVE-2026-54002, CVE-2026-49276) cover privilege escalation and scripting-link injection in writer/list fields. In Jupyter Server, CVE-2026-44727 (critical) allows XSS via nbconvert HTTP handlers that render user-authored notebook HTML without sandbox directives in the Content-Security-Policy. Avo HQ's CVE-2026-55518 (critical) is a missing authorization flaw in the association attach workflow — the UI checks permissions but the POST write endpoint does not, enabling unauthorized data writes.

Supply-chain and SSRF risks emerge in Langflow, Docker MCP Gateway, and Gotenberg. CVE-2026-55450 (critical) in Langflow AI allows unauthenticated users to upload unlimited data, leading to server space exhaustion, with additional risks in the REST API. Docker's CVE-2026-55887 (high) is a novel injection vector: a maliciously crafted OCI image label can inject arbitrary arguments into the docker run command line constructed by the MCP Gateway, affecting anyone referencing images via docker://. Gotenberg's CVE-2026-55229 (high) enables SSRF through the /forms/libreoffice/convert endpoint — a specially crafted DOCX document triggers server-side requests to internal networks. These flaws highlight the growing attack surface in AI/ML pipelines and container orchestration tooling.

AzeoTech DAQFactory type confusion and HAPI FHIR XSLT flaws target OT and healthcare. CVE-2026-12390 (high, CVSS 7.8) in AzeoTech DAQFactory versions 21.1 and prior allows code execution via specially crafted .ctl files due to a type confusion vulnerability. As CISA's advisory notes, DAQFactory is used for industrial data acquisition and SCADA interfaces, making this a critical OT security concern. In the healthcare sector, CVE-2026-55471 (critical) in org.hl7.fhir.utilities.XsltUtilities exposes two parallel families of XSLT transform helpers that bypass the project's hardened XXE protection, potentially enabling server-side request forgery or file disclosure in FHIR-based healthcare data exchange systems.