A highly critical security flaw has been disclosed in the AVideo platform, leaving media servers exposed to complete system takeover. Tracked as CVE-2026-29058, this zero-click, unauthenticated operating system command injection vulnerability allows hackers to hijack streams and remotely execute malicious shell commands. The flaw carries a maximum critical severity score of 9.8 out of 10. […]

The post AVideo Platform Vulnerability Allows Hackers to Hijack Streams via Zero-Click Command Injection appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.