> TritonInfoSec News
Home / Mar 19, 2026 / Story
0
#6 The Hacker News general March 18, 2026 at 11:42 UTC

9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors

By [email protected] (The Hacker News)

AI Summary

Security researchers discovered nine critical vulnerabilities across four low-cost IP KVM vendors (GL-iNet Comet RM-1, Angeet/Yeeso ES3 KVM, Sipeed NanoKVM, and JetKVM) that enable unauthenticated root access. These devices provide keyboard, video, and mouse control over IP, making the vulnerabilities particularly dangerous for remote server management.

Read full article → https://thehackernews.com/2026/03/9-critical-ip-kv…

Relevance score: 82.0/100

# More from March 19

  1. 1
    Ransomware gang exploits Cisco flaw in zero-day attacks since January BleepingComputer
  2. 2
    CISA orders feds to patch Zimbra XSS flaw exploited in attacks BleepingComputer
  3. 3
    Russia-linked hackers use advanced iPhone exploit to target Ukrainians The Record
  4. 4
    Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23 The Hacker News
  5. 5
    Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit The Hacker News
  6. 7
    Bank software vendor Marquis says more than 670,000 impacted by August breach The Record
  7. 8
    Aura confirms data breach exposing 900,000 marketing contacts BleepingComputer
  8. 9
    ConnectWise patches new flaw allowing ScreenConnect hijacking BleepingComputer
  9. 10
    'Claudy Day’ Trio of Flaws Exposes Claude Users to Data Theft Dark Reading