EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Signal

Critical FreeScout Vulnerability (CVE-2026-28289) Enables Remote Code Execution

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-03-04 21:51 UTCUpdated 2026-03-05 11:16 UTC
rss
securityhelp_net_security
Source links open
Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.
BackEvidence (2)Get the free brief by emailStart free trial
No card needed for the free brief.
Evidence trail (top sources)
top sources (2 domains)domains are deduped. counts indicate coverage, not truth.
2 top sources shown
Zero-Click FreeScout Bug Enables Remote Code Execution
Infosecurity Magazine · News · infosecurity-magazine.com · 2026-03-05 11:00 UTC
limited source diversity in top sources
View all evidence
Overview

A newly discovered vulnerability in FreeScout (CVE-2026-28289) allows remote code execution via email, posing significant security risks. Experts warn that it can be exploited without user interaction, making it crucial for organizations to address this issue promptly.

Score total
0.99
Momentum 24h
2
Posts
2
Origins
2
Source types
1
Duplicate ratio
0%
Why it matters
  • The vulnerability allows attackers to execute code without user interaction, increasing risk.
  • FreeScout is widely used for customer support, making this a significant threat.
  • Immediate action is required to mitigate potential breaches.
LLM analysis
Topic mix: lowPromo risk: lowSource quality: high
Recurring claims
  • CVE-2026-28289 allows unauthenticated, zero-click remote code execution via email in FreeScout.
How sources frame it
  • Help Net Security: neutral
  • Infosecurity Magazine: neutral
All evidence
All evidence
FreeScout vulnerability enables unauthenticated, zero-click RCE via email (CVE-2026-28289)
Help Net Security · helpnetsecurity.com · 2026-03-05 11:16 UTC
Zero-Click FreeScout Bug Enables Remote Code Execution
Infosecurity Magazine · infosecurity-magazine.com · 2026-03-05 11:00 UTC
Show filters & breakdown
Posts loaded: 0Publishers: 2Origin domains: 2Duplicates: -
Showing 2 / 0
Top publishers (this list)
  • Help Net Security (1)
  • Infosecurity Magazine (1)
Top origin domains (this list)
  • helpnetsecurity.com (1)
  • infosecurity-magazine.com (1)