ByteDance

ByteDance, the Chinese technology company behind TikTok and other platforms, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but requires no authentication and can compromise confidentiality, integrity, and availability on affected systems. The vulnerability is exploitable through local access only and could allow an unauthenticated attacker with physical or local network presence to execute malicious actions with user interaction. Security teams should monitor for patches from ByteDance before the March 5, 2026 deadline and assess which systems in their environment run ByteDance products to prioritize remediation efforts.