Critical RCE Flaw in Zoom MMRs and Multiple GitLab Vulnerabilities Patched

Timeline

1. 21.01.2026 17:42 1 articles · 23h ago

   Zoom and GitLab Release Security Updates for Critical Vulnerabilities

   Zoom has patched a critical command injection flaw (CVE-2026-22844) in its Node Multimedia Routers (MMRs) that could allow remote code execution. GitLab has addressed multiple high-severity vulnerabilities, including DoS and 2FA bypass flaws, in its Community and Enterprise Editions. Users are advised to update to the latest versions to protect against these threats.

   Show sources

   • Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws — thehackernews.com — 21.01.2026 17:42

   Open in new tab

Information Snippets

• Zoom's critical flaw (CVE-2026-22844) in MMRs before version 5.2.1716.0 allows remote code execution via command injection.

  First reported: 21.01.2026 17:42
  1 source, 1 article
  Show sources

  • Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws — thehackernews.com — 21.01.2026 17:42

• GitLab patched CVE-2025-13927 and CVE-2025-13928, which could lead to DoS conditions through malformed authentication data.

  First reported: 21.01.2026 17:42
  1 source, 1 article
  Show sources

  • Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws — thehackernews.com — 21.01.2026 17:42

• GitLab also fixed CVE-2026-0723, a 2FA bypass vulnerability affecting versions from 18.6 before 18.8.2.

  First reported: 21.01.2026 17:42
  1 source, 1 article
  Show sources

  • Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws — thehackernews.com — 21.01.2026 17:42

• No evidence of exploitation in the wild for the Zoom vulnerability has been reported.

  First reported: 21.01.2026 17:42
  1 source, 1 article
  Show sources

  • Zoom and GitLab Release Security Updates Fixing RCE, DoS, and 2FA Bypass Flaws — thehackernews.com — 21.01.2026 17:42