Lucene search
K

CVE-2025-26074

๐Ÿ—“๏ธย 02 Jul 2025ย 00:16:10Reported byย redhat.comTypeย 
redhatcve
ย redhatcve
๐Ÿ”—ย access.redhat.com๐Ÿ‘ย 12ย Views

Orkes Conductor v3.21.11 allows remote execution of OS commands via Java class access.

Related
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-58138
30 Jun 202618:44
โ€“attackerkb
Circl
CVE-2025-26074
30 Jun 202517:07
โ€“circl
CNNVD
Conductor ๅฎ‰ๅ…จๆผๆดž
30 Jun 202500:00
โ€“cnnvd
CVE
CVE-2025-26074
30 Jun 202500:00
โ€“cve
Cvelist
CVE-2025-26074
30 Jun 202500:00
โ€“cvelist
EUVD
EUVD-2025-19560
3 Oct 202520:07
โ€“euvd
EUVD
EUVD-2026-40377
30 Jun 202618:44
โ€“euvd
Github Security Blog
Conductor vulnerable to OS command injection through unrestricted access to Java classes
30 Jun 202518:31
โ€“github
NVD
CVE-2025-26074
30 Jun 202517:15
โ€“nvd
OSV
CVE-2025-26074
30 Jun 202517:15
โ€“osv
Rows per page

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

26 Sep 2025 10:09Current
8.3High risk
Vulners AI Score8.3
CVSS 3.19.8
EPSS0.00594
SSVC
12