Support
Vulnerability Notification
This page contains information regarding security vulnerabilities that may impact TeamT5 products.
![[Vulnerability Notice - 20260420] ThreatSonar Anti-Ransomware versions 4.0.0 earlier.](https://teamt5-back.e-s.tw/api/files/(可使用) getty-images-N9cgjAlzeAU-unsplash_1.jpg)
TeamT5 is committed to upholding the highest security standards to ensure the integrity and functionality of our products. During recent security audits, our PSIRT team identified a vulnerability in ThreatSonar Anti-Ransomware. Details are in the paragraphs below. The TeamT5 PSIRT team, upon discovering the vulnerability, followed the company’s Vulnerability Disclosure Policy . On March 2, 2026, they closely coordinated with TWCERT to report the vulnerability details, apply for a CVE, and carry out remediation work. Customers were also notified on March 18, 2026, to install the patch. The vulnerabilities have been assigned CVE-2026-5966 and CVE-2026-5967. This Notice once again strongly urges users to update immediately. Vulnerability Description Fixes for a root privilege escalation vulnerability and an arbitrary file deletion vulnerability. Affected Products ThreatSonar Anti-Ransomware versions 4.0.0 earlier. Recommended Solution For on-premises customers, please look at the links in the security update notice for the patch. For cloud version customers, the patch has already been applied on 2026/03/03. We apologize for any inconvenience this may cause and appreciate your prompt attention to this matter. If you require assistance or have any questions, please do not hesitate to contact our technical support team.

TeamT5 acknowledges the recent updates by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) to its Known Exploited Vulnerabilities (KEV) Catalog , which highlights vulnerabilities that have been seen exploited in the wild by malicious actors and underscores the importance of effective remediation and ongoing vigilance within the cybersecurity ecosystem. We would like to clarify our position and provide accurate context regarding the historical vulnerability referenced in the KEV Catalog and related reporting: 1. Historical Vulnerability Identified and Fully Remediated The vulnerability referenced in the KEV Catalog and in related media reports pertains to an issue identified in 2024 within our ThreatSonar Anti-Ransomware product. The vulnerability was proactively discovered by TeamT5’s Product Security Incident Response Team (PSIRT) during internal security reviews. Upon discovery, TeamT5 immediately developed and released a patch, and we proactively assisted all affected customers with updating to the remediated version. All impacted customers have since migrated off the vulnerable versions; no customer systems remain in service with the affected release. A public advisory was issued by TeamT5 in July 2024 with full details about the vulnerability and patch guidance . 2. Strengthening Security Posture and Resilience In direct response to this and similar industry risk signals such as those highlighted in recent CISA KEV updates, TeamT5 has invested significantly in strengthening our security practices: Enhancing our secure software development lifecycle and product security controls. Formalizing and standardizing internal incident response and vulnerability management processes. Engaging independent third-party security teams for red team exercises and external validation of our security defenses. These investments reaffirm our commitment to industry best practices and customer protection. 3. Ongoing Monitoring and Threat Detection TeamT5 maintains continuous monitoring of threats and exploitation activity impacting our products and the broader cybersecurity landscape. Our security and threat intelligence teams remain alert to emerging risks and stand ready to respond quickly with mitigations and customer support when needed. 4. Commitment to Community and Transparency We support initiatives like the CISA KEV Catalog as an important resource for helping organizations prioritize remediation of vulnerabilities exploited in the wild. TeamT5 continues to collaborate with the cybersecurity community, share information responsibly, and ensure our customers are informed and protected.
![[Vulnerability Notice - 20240715] ThreatSonar Anti-Ransomware](https://teamt5-back.e-s.tw/api/files/(可使用) getty-images-N9cgjAlzeAU-unsplash_1.jpg)
TeamT5 is committed to upholding the highest security standards to ensure the integrity and functionality of our products. During recent security audits, we identified a vulnerability in ThreatSonar Anti-Ransomware that could allow unauthorized users to create new user accounts and modify existing account passwords. We have released the corresponding patch update file as follows, please update it immediately. Affected Products : ThreatSonar Anti-Ransomware 3.4.5 and earlier versions Recommended Solution : For on-premises customers, please look at the links in the security update notice for the patch. For cloud version customers, the patch has already been applied on 2024/07/12. Note : The current patch, Hotfix - 240715, repairs this vulnerability and 2024/06/05 one. If you have not updated the previous patch yet, please use this one to repair both. TeamT5 Threat Response Center trcenter@teamt5.org
 getty-images-N9cgjAlzeAU-unsplash_1.jpg)
At TeamT5, we are unwavering in our commitment to uphold the highest standards of security, ensuring the integrity and functionality of our products. During our routine security audit, we have identified potential vulnerabilities in our ThreatSonar Anti-Ransomware product. These vulnerabilities allow unauthorized users with Administrator privileges to achieve remote code execution under specific conditions. We have acted swiftly to address this issue and have developed a patch to rectify these vulnerabilities. We urge all customers to apply this update immediately to safeguard your systems. Affected Product : ThreatSonar Anti-Ransomware 3.4.5 and previous versions Recommended Solution : For on-premises customers, please look at the links in the security update notice for the patch. For cloud version customers, the patch has already been applied on 2024/06/05. We sincerely apologize for any inconvenience this may cause and appreciate your immediate attention to this matter. Our technical support team is on standby to provide any assistance you may need during this process. Please do not hesitate to reach out to us if you have any questions or require further clarification. TeamT5 Threat Response Center trcenter@teamt5.org