https://cybercrime.club/tags/ai-toolchain/Infrastructure security news for people who build infrastructure.Hugo -- gohugo.ioen-usSun, 12 Apr 2026 22:35:50 -0400https://cybercrime.club/posts/marimo-cve-2026-39987-preauth-rce-exploited/Sun, 12 Apr 2026 22:35:50 -0400https://cybercrime.club/posts/marimo-cve-2026-39987-preauth-rce-exploited/A missing authentication check on Marimo's terminal WebSocket endpoint (CVE-2026-39987, CVSS 9.3) gave attackers a root shell with no credentials required — and they were actively exploiting it less than 10 hours after the advisory dropped.Vulnerabilities