Three critical security flaws discovered in OpenStack, Apple iOS, and OpenVPN
Researchers have identified three distinct vulnerabilities affecting widely deployed software: a resource leak in OpenStack Nova, a bypass of access restrictions on Apple iOS notifications, and information exposure via TLS protocol in OpenVPN open source.
These flaws, analyzed respectively on April 23, 2026 and early May 2026, allow attackers to compromise system integrity or access sensitive data without proper authentication.
Software vendors have been notified and patches should be distributed in the coming weeks to reduce risks of mass exploitation.