High severity8.8NVD Advisory· Published Apr 9, 2026· Updated Apr 13, 2026
CVE-2026-30478
CVE-2026-30478
Description
A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
33- TeamPCP Weekly Analysis: 2026-W18 (2026-04-27 through 2026-05-03), (Mon, May 4th)SANS Internet Storm Center · May 4, 2026
- DShield Honeypot Update, (Mon, May 4th)SANS Internet Storm Center · May 4, 2026
- Your work apps are quietly handing 19 data points to someoneHelp Net Security · May 4, 2026
- Shadow AI risks deepen as 31% of users get no employer trainingHelp Net Security · May 1, 2026
- Great responsibility, without great powerCisco Talos Intelligence · Apr 30, 2026
- Wordfence Intelligence Weekly WordPress Vulnerability Report (April 20, 2026 to April 26, 2026)Wordfence Blog · Apr 30, 2026
- EtherRAT Distribution Spoofing Administrative Tools via GitHub FacadesThe Hacker News · Apr 30, 2026
- Fast16 MalwareSchneier on Security · Apr 30, 2026
- Danger of Libredtail [Guest Diary], (Wed, Apr 29th)SANS Internet Storm Center · Apr 30, 2026
- Today's Odd Web Requests, (Wed, Apr 29th)SANS Internet Storm Center · Apr 29, 2026
- HTTP Requests with X-Vercel-Set-Bypass-Cookie Header, (Tue, Apr 28th)SANS Internet Storm Center · Apr 28, 2026
- Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks AboutThe Hacker News · Apr 28, 2026
- Chinese Silk Typhoon Hacker Extradited to U.S. Over COVID Research CyberattacksThe Hacker News · Apr 28, 2026
- TeamPCP Supply Chain Campaign: Update 008 - 26-Day Pause Ends with Three Concurrent Compromises (Checkmarx KICS, Bitwarden CLI Cascade, xinference PyPI), CanisterSprawl npm Worm Identified, and Tier 1 Coverage Returns, (Mon, Apr 27th)SANS Internet Storm Center · Apr 27, 2026
- ⚡ Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & MoreThe Hacker News · Apr 27, 2026
- Friday Squid Blogging: How Squid Survived Extinction EventsSchneier on Security · Apr 24, 2026
- It pays to be a forever studentCisco Talos Intelligence · Apr 23, 2026
- Wordfence Intelligence Weekly WordPress Vulnerability Report (April 13, 2026 to April 19, 2026)Wordfence Blog · Apr 23, 2026
- Bad Apples: Weaponizing native macOS primitives for movement and executionCisco Talos Intelligence · Apr 21, 2026
- Foxit, LibRaw vulnerabilitiesCisco Talos Intelligence · Apr 16, 2026
- The Q1 vulnerability pulseCisco Talos Intelligence · Apr 16, 2026
- Wordfence Intelligence Weekly WordPress Vulnerability Report (April 6, 2026 to April 12, 2026)Wordfence Blog · Apr 16, 2026
- More than pretty pictures: Wendy Bishop on visual storytelling in techCisco Talos Intelligence · Apr 16, 2026
- The n8n n8mare: How threat actors are misusing AI workflow automationCisco Talos Intelligence · Apr 15, 2026
- Patch Tuesday, April 2026 EditionKrebs on Security · Apr 14, 2026
- The Increasing Role of AI in Vulnerability ResearchWordfence Blog · Apr 10, 2026
- Wordfence Intelligence Weekly WordPress Vulnerability Report (March 30, 2026 to April 5, 2026)Wordfence Blog · Apr 9, 2026
- 50,000 WordPress Sites affected by Arbitrary File Upload Vulnerability in Ninja Forms – File Upload WordPress PluginWordfence Blog · Apr 6, 2026
- 200,000 WordPress Sites Affected by Arbitrary File Deletion Vulnerability in Perfmatters WordPress PluginWordfence Blog · Apr 2, 2026
- Wordfence Intelligence Weekly WordPress Vulnerability Report (March 23, 2026 to March 29, 2026)Wordfence Blog · Apr 2, 2026
- Microsoft Patch Tuesday, March 2026 EditionKrebs on Security · Mar 11, 2026
- How AI Assistants are Moving the Security GoalpostsKrebs on Security · Mar 8, 2026
- Defending Against China-Nexus Covert Networks of Compromised DevicesCISA Alerts