CSO Online

Langflow RCE under active attack months after a patch was shipped

Actively exploited CVE-2026-5027 lets attackers write files to arbitrary locations on vulnerable Langflow servers, creating a path to remote code execution and full system compromise.
latesthackingnews.com

LiteLLM Vulnerability Chain: What Security Teams Running AI Gateways Need to Do Now

A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell on the gateway server. A separate RCE is ...
Macworld

2026 iPad: Everything we know about Apple’s next entry-level tablet

Macworld reports that Apple’s 2026 entry-level iPad is expected to launch by May 2026 with either the A18 or A19 chip, bringing Apple Intelligence support for the first time. The upgrade appears ...