IBM Verify Access Privilege Escalation Scores 9.3 - CVE-2026-1346 Breakdown
IBM Verify Identity Access privilege escalation allows local users to gain elevated access. CVSS 9.3 CRITICAL. Affects containers and standalone deployments.
Weekly Roundup
Security Roundup: April 05 to April 12, 2026
Weekly cybersecurity vulnerability roundup from Sherlock Forensics. 16 critical and high-severity CVEs analyzed from April 05 to April 12, 2026 with impact assessment and remediation guidance.
16 Vulnerabilities This Week
Critical findings
CVSS 8.8: Windmill Authorization Bypass Puts Operator Restrictions at Risk
Windmill 1.56.0 through 1.614.0 missing authorization allows Operators to create and modify entities via the backend API. CVSS 8.8 HIGH.
CVE-2026-3357: IBM Langflow Insecure FAISS Deserialization Enables Code Execution
IBM Langflow Desktop 1.6.0 through 1.8.2 allows authenticated users to execute arbitrary code via insecure deserialization in the FAISS component. CVSS 8.8 HIGH.
CVSS 7.2: IBM Verify Access SSRF Puts Internal Auth Endpoints at Risk
IBM Verify Identity Access contains a server-side request forgery vulnerability exposing internal authentication endpoints to unauthorized access. CVSS 7.2 HIGH.
CVE-2021-4473: Tianxin Management System Hit with Critical Command Injection
Tianxin Internet Behavior Management System contains a critical command injection flaw (CVSS 9.8) in the Reporter component allowing unauthenticated remote code execution.
CVE-2026-4788: IBM Tivoli Netcool Impact Hit with Sensitive Data Exposure in Logs
IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.37 stores sensitive information in log files readable by local users. CVSS 8.4 HIGH.
CVE-2026-22682: OpenHarness File Tool Flaw Exposes Local Files to Agents
OpenHarness improper access control in file tools allows attackers to read arbitrary local files outside intended repository boundaries. CVSS 7.1 HIGH.
Windmill SQL Injection Scores 9.9 - CVE-2026-23696 Breakdown
Windmill CE and EE SQL injection in folder ownership management lets authenticated attackers extract JWT secrets and execute arbitrary SQL. CVSS 9.9 CRITICAL.
docker-mcp-server Command Injection Scores 7.3 - CVE-2026-5741 Breakdown
suvarchal docker-mcp-server up to 0.1.0 OS command injection in container management functions via the HTTP interface. CVSS 7.3 HIGH.
Red Hat ACM Certificate Forgery Scores 8.2 - CVE-2026-4740 Breakdown
Open Cluster Management (Red Hat ACM) improper certificate renewal validation allows managed cluster admins to forge client certificates. CVSS 8.2 HIGH.
CVE-2026-3296: Everest Forms WordPress Plugin Hit with Critical PHP Object Injection
Everest Forms plugin for WordPress up to 3.4.3 contains a critical PHP Object Injection via unsafe deserialization of form entry metadata. CVSS 9.8.
CVSS 9.8: Cockpit SSH Command Injection Puts Linux Servers at Risk
Cockpit remote login passes unsanitized hostnames to SSH, allowing attackers to inject malicious commands via a single HTTP request. CVSS 9.8 CRITICAL.
CVE-2026-22679: Weaver E-cology Hit with Critical Unauthenticated RCE
Weaver E-cology 10.0 contains a critical unauthenticated remote code execution flaw in the dubboApi debug endpoint. CVSS 9.8.
CVSS 7.3: PowerJob Code Injection Puts Workflow Nodes at Risk
PowerJob 5.1.0 through 5.1.2 code injection in the OpenAPI addWorkflowNode endpoint via the nodeParams argument allows remote code execution. CVSS 7.3 HIGH.
CVE-2026-1342: IBM Verify Identity Access Lets Local Users Execute Malicious Scripts
IBM Verify Identity Access and Security Verify Access containers allow locally authenticated users to execute malicious scripts. CVSS 8.5 HIGH.
CVE-2026-5736: PowerJob detailPlus Endpoint Exposes Server to Manipulation
PowerJob 5.1.0 through 5.1.2 contains a vulnerability in the InstanceController detailPlus endpoint allowing argument manipulation. CVSS 7.3 HIGH.
Stay Ahead
Don't wait for the next roundup
These vulnerabilities are public knowledge. Attackers are already scanning for them. Get a security assessment before they find your exposure.
Order a Security Assessment