CVE-2026-26422 | Clash Verge Rev clash-verge-service-ipc up to 2.2.x IPC Endpoint permission assignment

Inserito da Angelo Barbosa | Giu 7, 2026 | CVE

A vulnerability labeled as problematic has been found in Clash Verge Rev clash-verge-service-ipc up to 2.2.x. The affected element is an unknown function of the component IPC Endpoint. The manipulation results in incorrect permission assignment.

This vulnerability was named CVE-2026-26422. The attack needs to be approached locally. There is no available exploit.

The affected component should be upgraded.

CVE-2026-26422 | Clash Verge Rev clash-verge-service-ipc up to 2.2.x IPC Endpoint permission assignment

Post correlati

CVE-2024-2678 | Campcodes Online Job Finder System 1.0 controller.php JOBREGID sql injection

CVE-2025-6805 | Marvell QConvergeConsole deleteEventLogFile path traversal

CVE-2026-4500 | bagofwords1 bagofwords up to 0.0.297 code_execution.py generate_df injection (Issue 60)

CVE-2026-21725 | Grafana up to 12.4.0 permission