The vulnerability, identified as CVE-2024-50386, affects Apache CloudStack versions 4. This security issue stems from missing validation checks for KVM-compatible templates during the template registration process. KVM (Keyboard, Video, and Mouse) switches have become an essential component in many industries, including finance, government, and healthcare, where multiple computers need to be accessed and managed from a single workstation. These devices allow users to switch between different computers. The Apache CloudStack project has announced the release of critical security updates to address severe vulnerabilities in its KVM-based infrastructure. Administrators often use them to remotely access machines on networks. The. growing more common and complex with each passing day. Massive high-profile cybersecurity breaches such as the Solar Winds supply chain attack in 2020 have brought organizations worldwide a greate sense of urgency in protecting against cyber threats. The nine vulnerabilities, discovered by Eclypsium, span four different products from GL-iNet. Last September, the police arrested criminals who conspired to steal millions of dollars from Barclays Bank and Santander Bank.