4 min read
News Brief Six intelligence agencies from five nations jointly warn that frontier AI will transform offensive cyber capabilities within months, urging board-level action on foundational security controls now.
Six intelligence agencies from five nations jointly warn that frontier AI will transform offensive cyber capabilities within months, urging board-level action on foundational security controls now.
A path traversal vulnerability in Langflow's file API allows unauthenticated attackers to overwrite arbitrary files and chain to RCE. Active exploitation confirmed in June 2026. Fix is in version 1.9.0.
CISA added CVE-2026-42271 to KEV after Horizon3.ai chained the LiteLLM MCP command injection flaw with a Starlette auth bypass for unauthenticated RCE. Federal deadline: June 22.