Lucene search
+L

27 matches found

CVE
CVE
added 2026/04/08 12:4 p.m.16 views

CVE-2026-5300

CVE-2026-5300 affects CoolerControl/coolercontrold prior to version 4.0.0, where unauthenticated users can view and modify potentially sensitive data via HTTP requests. The issue impacts both confidentiality and integrity (CVSS v3.1 base scores: 9.1/CRITICAL under NVD, with NETWORK attack vector ...

9.1CVSS5.9AI score0.00218EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/08 11:36 a.m.20 views

CVE-2026-5208 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in coolercontrold

Command injection in alerts in CoolerControl/coolercontrold 4.0.0 allows authenticated attackers to execute arbitrary code as root via injected bash commands in alert names...

8.2CVSS0.00972EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/08 11:36 a.m.9 views

CVE-2026-5208 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in coolercontrold

Command injection in alerts in CoolerControl/coolercontrold 4.0.0 allows authenticated attackers to execute arbitrary code as root via injected bash commands in alert names...

8.2CVSS6.3AI score0.00972EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 11:36 a.m.23 views

CVE-2026-5208

CVE-2026-5208 affects CoolerControl/coolercontrold prior to version 4.0.0. The issue is OS command injection in alert names, allowing authenticated, local attackers to execute arbitrary code as root. The vulnerability arises from improper handling of alert-name input, enabling injection into a sh...

8.2CVSS6.3AI score0.00972EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/08 11:36 a.m.3 views

CVE-2026-5208 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in coolercontrold

Command injection in alerts in CoolerControl/coolercontrold 4.0.0 allows authenticated attackers to execute arbitrary code as root via injected bash commands in alert names...

8.2CVSS6.3AI score0.00972EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.9 views

PT-2026-31297

Name of the Vulnerable Software and Affected Versions CoolerControl/coolercontrold versions prior to 4.0.0 Description A command injection issue exists in alerts within CoolerControl/coolercontrold. Authenticated attackers can execute arbitrary code as root by injecting bash commands into alert...

8.2CVSS6.2AI score0.00972EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.6 views

PT-2026-31300

Name of the Vulnerable Software and Affected Versions CoolerControl/coolercontrold versions prior to 4.0.0 Description Unauthenticated functionality in CoolerControl/coolercontrold allows unauthenticated attackers to view and modify potentially sensitive data via HTTP requests. Recommendations...

5.9CVSS5.8AI score0.00218EPSS
Exploits0References5
Rows per page
Query Builder