Hong Kong University Data Intelligence Lab

Hong Kong University Data Intelligence Lab has a high-severity vulnerability (CVSS 7.5) that allows remote attackers to gain unauthorized access to sensitive information without authentication or user interaction required. The vulnerability is network-accessible and requires no special privileges, making it relatively easy to exploit, though it does not enable data modification or system unavailability. Security teams should monitor for any patches from the vendor before the June 20, 2026 deadline and consider implementing network segmentation or access controls for this vendor's products in the interim.