Advanced Threat Data Export

Filter and download the raw CVE repository (CSV/JSON) for SIEM integration and internal reporting.

Vulnerability Keyword

Date Range

Severity

Format

Upgrade Package

Data export is locked. Upgrade your package to enable filtering and downloading.

← Back to CVE List

CVE-2026-3502NVD

Description

TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update delivery path can substitute a tampered update payload. If the payload is executed or installed by the updater, this may result in arbitrary code execution in the context of the updating process or user.

Severity Level

HIGH (7.8)

Published Date

30/03/2026

Last Modified

03/04/2026

Exploitation Status

ACTIVE

References

https://trueconf.com/blog/update/trueconf-8-5
https://research.checkpoint.com/2026/operation-truechaos-0-day-exploitation-against-southeast-asian-government-targets/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-3502

Critical Alert 1 Active Exploit Detected Today

CVE Watchtower

Advanced Threat Data Export

CVE-2026-3502NVD

Description

References