Meta

Meta, a major social media and technology company, has a local privilege escalation vulnerability with a CVSS score of 7.8 that requires user interaction but no authentication to exploit, and it can result in high-impact compromise of confidentiality, integrity, and availability. The vulnerability was reported in March 2026 with a vendor patch deadline of July 2026. Security teams should monitor Meta's security advisories closely and prioritize patching once the fix becomes available, particularly for systems where local access is possible.