CVE-2026-32298 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Angeet ES3 KVM does not properly sanitize user-supplied variables parsed by the 'cfg.lua' script, allowing an authenticated attacker to execute OS-level com…
High CVSS: 8.5

CVE-2026-32298

The Angeet ES3 KVM does not properly sanitize user-supplied variables parsed by the 'cfg.lua' script, allowing an authenticated attacker to execute OS-level commands.
Vendor
-
Product
-
CWE
CWE-78
Yayın Tarihi
2026-03-17 18:16:17
Güncelleme
2026-03-18 14:52:44
Source Identifier
9119a7d8-5eab-497f-8521-727c672e3725
KEV Date Added
-

Kategoriler

CWE-78 HIGH 2026

Referanslar

https://eclypsium.com/blog/kvm-devices-the-keys-to-your-kingdom-are-hanging-on-the-network/ https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/IT/white/2025/va-26-076-01.json https://www.cve.org/CVERecord?id=CVE-2026-32291