Critical RCE Vulnerability in Xerte Online Tools (CVE-2026-12116)
A critical vulnerability (CVE-2026-12116) with a CVSS score of 9.8 has been discovered in Xerte Online Tools, allowing for remote code execution (RCE) through manipulation of the antivirus binary path in the tools server settings. This vulnerability affects versions prior to v3.15.5 and 3.14.6. Immediate patching is recommended to prevent potential exploitation.