EUVD-2026-12333

🗓️ 16 Mar 2026 15:30:43Reported by EUVDType

OpenLiteSpeed and LiteSpeed Enterprise have an operating system command injection vulnerability.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2026-31386	16 Mar 202605:21	–	attackerkb
Circl	CVE-2026-31386	16 Mar 202603:00	–	circl
CNNVD	LiteSpeed Web Server Enterprise和LiteSpeed OpenLiteSpeed 操作系统命令注入漏洞	16 Mar 202600:00	–	cnnvd
CVE	CVE-2026-31386	16 Mar 202605:21	–	cve
Cvelist	CVE-2026-31386	16 Mar 202605:21	–	cvelist
Japan Vulnerability Notes	OpenLiteSpeed and LSWS Enterprise vulnerable to OS command injection	16 Mar 202608:18	–	jvn
NVD	CVE-2026-31386	16 Mar 202614:19	–	nvd
Positive Technologies	PT-2026-25612	16 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-31386	26 Mar 202614:59	–	redhatcve
Vulnrichment	CVE-2026-31386	16 Mar 202605:21	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "4e6e63a9-48e5-3a5b-84e3-5db2a08bec74",
        "vendor": {
          "name": "LiteSpeed Technologies"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "3a984d51-40ad-3d97-b2dd-be273e72a0a4",
        "product": {
          "name": "LSWS Enterprise"
        },
        "product_version": "all versions"
      },
      {
        "id": "6078ff72-d1a3-3672-8c1d-b4782f3eae4a",
        "product": {
          "name": "OpenLiteSpeed"
        },
        "product_version": "all versions"
      }
    ]
  }
]

Source	Link
openlitespeed	www.openlitespeed.org/
litespeedtech	www.litespeedtech.com/products/litespeed-web-server
jvn	www.jvn.jp/en/jp/JVN22152812/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-31386

16 Mar 2026 15:30Current

5.8Medium risk

Vulners AI Score5.8

CVSS 48.6

CVSS 37.2

EPSS0.00238

SSVC