> TritonInfoSec News
Home / Apr 11, 2026 / Story
0
#4 The Hacker News general April 10, 2026 at 07:37 UTC

Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure

By [email protected] (The Hacker News)

AI Summary

A critical remote code execution vulnerability (CVE-2026-39987) in the Marimo Python notebook platform was exploited within 10 hours of public disclosure. The flaw affects all Marimo versions prior to 3.5.1.35 and allows pre-authenticated attackers to execute arbitrary code, highlighting the dangers of immediate weaponization of disclosed vulnerabilities.

Read full article → https://thehackernews.com/2026/04/marimo-rce-flaw-…

Relevance score: 88.0/100

# More from April 11

  1. 1
    ‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts The Record
  2. 2
    Nearly 4,000 US industrial devices exposed to Iranian cyberattacks BleepingComputer
  3. 3
    Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor BleepingComputer
  4. 5
    Dutch hospitals face disruptions after ransomware attack on software provider ChipSoft The Record
  5. 6
    Microsoft: Canadian employees targeted in payroll pirate attacks BleepingComputer
  6. 7
    Hackers exploiting Acrobat Reader zero-day flaw since December BleepingComputer
  7. 8
    Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers The Hacker News
  8. 9
    New ‘LucidRook’ malware used in targeted attacks on NGOs, universities BleepingComputer
  9. 10
    New VENOM phishing attacks steal senior executives' Microsoft logins BleepingComputer