CVE-2026-44007 | vm2 up to 3.11.0 os command injection

Inserito da Angelo Barbosa | Mag 6, 2026 | CVE

A vulnerability classified as critical was found in vm2 up to 3.11.0. This vulnerability affects unknown code. Such manipulation leads to os command injection.

This vulnerability is listed as CVE-2026-44007. The attack must be carried out from within the local network. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-44007 | vm2 up to 3.11.0 os command injection

Post correlati

CVE-2024-7078 | Semtek Sempos up to 31072024 sql injection

CVE-2025-7469 | Campcodes Sales and Inventory System 1.0 /pages/product_add.php prod_name sql injection

CVE-2024-11020 | Grand Vice Info Webopac7 up to 6.5.0/7.2.2 sql injection

CVE-2024-38832 | VMware Aria Operations up to 8.18.1 cross site scripting (VMSA-2024-0022)