Meta

Meta, the technology giant behind Facebook, Instagram, and WhatsApp, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no authentication to exploit, potentially allowing attackers to gain complete control over confidentiality, integrity, and availability of affected systems. The flaw was reported in March 2026 with a July deadline for fixes, suggesting it remains unpatched during the disclosure window. Security teams should monitor for exploitation attempts targeting Meta products and ensure users avoid running untrusted applications or files from suspicious sources until official patches are released.