Critical RCE, SQL Injection, and Privilege Escalation Flaws Patched in Ivanti, Fortinet, SAP, VMware, and n8n

Timeline

1. 18.05.2026 13:54 1 articles · 17h ago

   Critical RCE and Privilege Escalation Flaws Patched Across Multiple Enterprise Platforms

   Ivanti addressed CVE-2026-8043 (CVSS 9.6) in Xtraction, allowing authenticated attackers to read/write files via external file name control. Fortinet resolved CVE-2026-44277 (CVSS 9.1) in FortiAuthenticator and CVE-2026-26083 (CVSS 9.1) in FortiSandbox and related services, both enabling unauthenticated RCE. SAP patched CVE-2026-34260 (CVSS 9.6), an SQL injection flaw in S/4HANA, and CVE-2026-34263 (CVSS 9.6), a missing authentication check in SAP Commerce enabling server-side code execution. VMware issued fixes for CVE-2026-41702 (CVSS 7.8) in Fusion, a TOCTOU flaw allowing local privilege escalation to root. n8n released patches for five critical flaws (CVSS 9.4) including prototype pollution and CLI injection vectors enabling authenticated RCE in workflow automation platforms.

   Show sources

   • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

   Open in new tab

Information Snippets

• CVE-2026-8043 in Ivanti Xtraction prior to 2026.2 allows authenticated attackers to read sensitive files and write arbitrary HTML files to a web directory via external control of a file name, enabling information disclosure and client-side attacks.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-44277 in FortiAuthenticator (versions < 6.5.7, < 6.6.9, < 8.0.3) is an improper access control flaw enabling unauthenticated attackers to execute unauthorized code or commands via crafted requests.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-26083 in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS (versions < 4.4.9, < 5.0.2, Cloud < 5.0.6) is a missing authorization flaw in the WEB UI allowing unauthenticated RCE via HTTP requests.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-34260 in SAP S/4HANA is an SQL injection vulnerability exploitable by authenticated attackers with low privileges to inject malicious SQL statements, potentially exposing sensitive database information and crashing the application.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-34263 in SAP Commerce is a missing authentication check enabling unauthenticated users to perform malicious configuration uploads and code injection, resulting in arbitrary server-side code execution due to overly permissive security configuration.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-41702 in VMware Fusion (version 26H1) is a TOCTOU vulnerability in a SETUID binary allowing local non-administrative users to escalate privileges to root on affected systems.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-42231 in n8n (versions < 1.123.32, < 2.17.4, < 2.18.1) is a prototype pollution flaw in the xml2js library parsing XML request bodies in webhooks, allowing authenticated workflow creators to achieve RCE on the n8n host.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-44791 in n8n bypasses CVE-2026-42232, enabling remote code execution on the n8n host and requiring updates to versions 1.123.43, 2.20.7, and 2.22.1.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-44789 in n8n allows authenticated workflow creators to achieve global prototype pollution via an unvalidated pagination parameter in the HTTP Request node, leading to RCE on the n8n host.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54

• CVE-2026-44790 in n8n enables authenticated workflow creators to inject CLI flags on the Git node's Push operation, allowing arbitrary file reads from the n8n server and full compromise.

  First reported: 18.05.2026 13:54
  1 source, 1 article
  Show sources

  • Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — thehackernews.com — 18.05.2026 13:54