CVE-2026-35043 | BentoML up to 1.4.37 command injection

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability marked as critical has been reported in BentoML up to 1.4.37. This affects an unknown function. Performing a manipulation results in command injection.

This vulnerability is known as CVE-2026-35043. Attacking locally is a requirement. No exploit is available.

It is suggested to upgrade the affected component.

CVE-2026-35043 | BentoML up to 1.4.37 command injection

Post correlati

CVE-2025-14228 | Yealink SIP-T21P E2 52.84.0.15 Local Directory Page cross site scripting

CVE-2024-10434 | Tenda AC1206 up to 20241027 /goform/ate ate_Tenda_mfg_check_usb/ate_Tenda_mfg_check_usb3 arg stack-based overflow

CVE-2024-23593 | Lenovo Windows 7 PC Preload/Windows 8 PC Preload 2012/2013/2014 System Recovery Bootloader unknown vulnerability

CVE-2025-20893 | Samsung Devices Control In NotificationManager improper authentication