DifyTap Vulnerabilities Expose Private AI Conversations Across Enterprise Tenants

The DifyTap vulnerabilities in the Dify AI platform allow attackers to bypass tenant isolation, steal private AI chat histories, and access sensitive documents without proper authorization.

**Check your Dify version immediately and update to at least 1.14.2 ASAP to stop attackers from wiretapping your AI conversations. Also add Web Application Firewall rules to block path-traversal attacks on the Plugin Daemon, keep your internal APIs off the public internet, and update the PDFium binary on self-hosted setups.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/difytap-vulnerabilities-expose-private-ai-conversations-across-enterprise-tenants-g-7-e-l-r/gD2P6Ple2L

Microsoft Patches AutoJack Vulnerability Chain in AutoGen Studio

A critical vulnerability chain dubbed "AutoJack" in Microsoft's AutoGen Studio allows attackers to hijack web-enabled AI agents to achieve Remote Code Execution (RCE) on developer workstations. By exploiting the agent's "localhost" identity, an attacker can trick the agent into visiting a malicious webpage, bypassing security boundaries to execute unauthenticated, arbitrary commands on the host system.

**This flaw allows attackers to hijack web-enabled AI agents via malicious webpages, turning them into a vehicle for RCE on developer workstations. Microsoft caught the issue during development, meaning stable PyPI builds (0.4.2.2) are safe. Only users who built from the GitHub main branch before commit b047730 or used specific pre-releases are exposed. To prevent total system compromise, always run browsing AI prototypes in offline, sandboxed containers under low-privilege accounts.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/microsoft-patches-autojack-vulnerability-chain-in-autogen-studio-v-r-i-t-q/gD2P6Ple2L

PixelSmash Vulnerability in FFmpeg Enables Remote Code Execution

FFmpeg version 8.1.2 patches a high-severity heap overflow (CVE-2026-8461) in the MagicYUV decoder that allows attackers to execute arbitrary code via malicious video files. The flaw impacts a wide range of media applications, including Jellyfin and Nextcloud.

**Update FFmpeg to version 8.1.2 or later immediately to close the PixelSmash flaw (CVE-2026-8461), and update any apps that bundle it like Jellyfin, Nextcloud, Kodi, or OBS. If you can't update right away, restrict file uploads to trusted users only and isolate any servers that automatically scan or process media files.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/pixelsmash-vulnerability-in-ffmpeg-enables-remote-code-execution-p-9-m-z-b/gD2P6Ple2L

#OT #Advisory VDE-2026-070
Helmholz: Authenticated unintended access to critical program parameters in myREX24V2/myREX24V2.virtual

There is a vulnerability in myREX24V2/myREX24V2.virtual that allows an authenticated remote attacker to access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters.
#CVE CVE-2026-10521

https://certvde.com/en/advisories/vde-2026-070/

#CSAF https://helmholz.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-070.json

#OT #Advisory VDE-2026-071
JUMO: Allegro RomPager webserver vulnerability in JUMO mTRONT, DICON touch, AQUIS touch devices

Multiple products from JUMO are affected by webserver vulnerability "CVE-2013-6786, CVE-2014-9222, CVE-2014-9223. This vulnerability leads to DOS of the device by using a misfortune cookie and reflected XSS attacks.
#CVE CVE-2014-9222, CVE-2013-6786, CVE-2014-9223

https://certvde.com/en/advisories/vde-2026-071/

#CSAF https://jumo.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-071.json

#OT #Advisory VDE-2026-068
MB connect line: Authenticated unintended access to critical program parameters in mbCONNECT24/mymbCONNECT24

There is a vulnerability in mbCONNECT24/mymbCONNECT24 that allows an authenticated remote attacker to access a hidden configuration method, that should not be accessible by any user, to modify critical program parameters.
#CVE CVE-2026-10521

https://certvde.com/en/advisories/vde-2026-068/

#CSAF https://mbconnectline.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2026-068.json

Unpatchable usbliter8 Exploit Compromises Apple A12 and A13 BootROM

Researchers disclosed "usbliter8", a unpatchable hardware vulnerability in Apple A12 and A13 devices allows complete BootROM compromise via physical USB access. An attacker with a cheap microcontroller can bypass hardware security to boot unsigned code.

**There is no software update coming to save you, you cannot patch this. The flaw is in immutable read-only memory, the only true mitigation is migrating to newer hardware. For any users handling sensitive data inventory all A12 and A13 devices and prioritize their replacement with A14-based models or newer. For devices that must stay in service, treat physical custody as your primary security control and strictly restrict access to untrusted USB connections.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/unpatchable-usbliter8-exploit-compromises-apple-a12-and-a13-bootrom-s-v-n-z-i/gD2P6Ple2L