CVE-2026-26832 | node-tesseract-ocr up to 2.2.1 src/index.js recognize os command injection

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability labeled as critical has been found in node-tesseract-ocr up to 2.2.1. Affected by this vulnerability is the function recognize of the file src/index.js. Executing a manipulation can lead to os command injection.

This vulnerability appears as CVE-2026-26832. The attack may be performed from remote. There is no available exploit.

CVE-2026-26832 | node-tesseract-ocr up to 2.2.1 src/index.js recognize os command injection

Post correlati

CVE-2024-38874 | events2 Extension up to 8.3.7/9.0.5 on TYPO3 resource injection

CVE-2024-1766 | Download Manager Plugin up to 3.2.86 on WordPress cross site scripting

CVE-2024-57439 | RuoYi 4.8.0 Reset Password Interface denial of service

CVE-2024-0151 | ARM v8-M Security Extensions Requirements on Development Tools unexpected data type