TODAY'S critical alerts include four active exploits related to vulnerabilities: CVE-2025-67038 (Lantronix EDS5000), CVE-2026-34910, CVE-2026-34909, and CVE-2026-34908 (all Ubiquiti UniFi OS vulnerabilities). Notably, CVE-2026-40624 affects AVer PTC500S cameras, scoring a CVSS of 9.8, indicating a critical risk due to improper input validation that could lead to remote code execution. CISA has highlighted this flaw as serious due to its potential impact on government and healthcare networks. A firmware update is available, with recommended actions for users to isolate devices and monitor logs.
Flaw in AVer PTC500S cameras allows remote code execution
CyberSIXT Evidence Panel
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Lantronix, UniFi flaws surface as Outlook Mac reply glitch seen
cybersixt.com
-
Google Search Now Saves Your Uploaded Media to Train AI
-
Flaw in AVer PTC500S cameras allows remote code execution
securityonline.info
-
CISA Adds Four Exploited UniFi OS and Lantronix Flaws to KEV Catalog
-
CISA adds Ubiquiti UniFi OS flaw CVE-2026-34908 to KEV list
-
Critical Ubiquiti UniFi OS flaw exploited in the wild, no patch
-
Lantronix EDS5000 Command Injection Flaw Under Active Attack
-
CISA flags active exploit in Ubiquiti UniFi OS CVE-2026-34910
-
CISA adds CVE-2026-34909 to KEV as UniFi OS flaw exploited
-
CISA Flags Critical UniFi OS Flaw as Actively Exploited, No Patch
-
Lantronix EDS5000 Command Injection Flaw Under Active Attack