CVE-2026-3502 — TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update delivery path can substitute a tampered update payload — CVE Database · The Intelligence Room