An undisclosed vulnerability in LND versions 0.10.x and below was revealed Thursday with developers urging node operators to update to the newest version.
Source: coindesk