CVE-2026-8217 | Industrial Application Software IAS Canias ERP 8.03 RMI Interface Runtime.getRuntime.exec troiaCode os command injection

A vulnerability, which was classified as critical, has been found in Industrial Application Software IAS Canias ERP 8.03. Impacted is the function Runtime.getRuntime.exec of the component RMI Interface. Performing a manipulation of the argument troiaCode results in os command injection.

This vulnerability was named CVE-2026-8217. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-8217 | Industrial Application Software IAS Canias ERP 8.03 RMI Interface Runtime.getRuntime.exec troiaCode os command injection

Post correlati

CVE-2024-39425 | Adobe Acrobat Reader toctou (apsb24-57)

CVE-2026-21643 | Fortinet FortiClientEMS 7.4.4 sql injection (FG-IR-25-1142)

CVE-2024-50413 | Codection Import and Export Users and Customers Plugin up to 1.27.5 on WordPress cross site scripting

CVE-2024-34823 | Kiboko Labs Arigato Autoresponder and Newsletter Plugin up to 2.7.2.3 on WordPress cross-site request forgery