CVE-2026-2333

Critical CVSS: 9.2

Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds 2.2.0.4 allows Command Injection via a crafted network request.

Vendor

Owlcyberdefense

Product

Opds-talon

CWE

CWE-77

Yayın Tarihi

2026-02-20 17:25:57

Güncelleme

2026-02-26 23:10:43

Source Identifier

prodsec@nozominetworks.com

KEV Date Added

Kategoriler

CWE-77 Opds-talon CRITICAL Owlcyberdefense 2026

Referanslar

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2026-2333

Benzer Kayıtlar

High

CVE-2026-26102

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network…

High

CVE-2026-26095

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network…

High

CVE-2026-26096

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network…

High

CVE-2026-26097

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via…

High

CVE-2026-26098

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via…

High

CVE-2026-26099

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via…