This week's most uncomfortable disclosure didn't come from a nation-state campaign or a ransomware gang — it came from an 18-year-old bug sitting quietly inside software running a third of the interne