Meta

Meta, the social media and technology conglomerate, has a high-severity local vulnerability (CVSS 7.8) that requires user interaction but no authentication to trigger. The flaw allows an attacker with local system access to achieve complete compromise including data theft, system modification, and denial of service. Security teams should monitor for exploitation attempts targeting Meta products and prepare patching strategies ahead of the July 24, 2026 vendor deadline.