Lucene search
K

4 matches found

Snyk
Snyk
added 2026/03/26 8:33 p.m.7 views

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection via the actioner process. An attacker can execute arbitrary system commands by sending specially crafted requests to the metadata service endpoint. Remediation There is no fixed version for...

8.8CVSS6.6AI score0.02502EPSS
Exploits2References3
EUVD
EUVD
added 2026/03/23 6:30 p.m.3 views

EUVD-2026-14461

A command injection vulnerability exists in DigitalOcean Droplet Agent through 1.3.2. The troubleshooting actioner component internal/troubleshooting/actioner/actioner.go processes metadata from the metadata service endpoint and executes commands specified in the TroubleshootingAgent.Requesting...

6.3AI score0.02502EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2026/03/23 12:0 a.m.1 views

CVE-2026-24516

A command injection vulnerability exists in DigitalOcean Droplet Agent through 1.3.2. The troubleshooting actioner component internal/troubleshooting/actioner/actioner.go processes metadata from the metadata service endpoint and executes commands specified in the TroubleshootingAgent.Requesting...

6.3AI score0.02502EPSS
Exploits2References5
Vulnrichment
Vulnrichment
added 2026/03/23 12:0 a.m.2 views

CVE-2026-24516

A command injection vulnerability exists in DigitalOcean Droplet Agent through 1.3.2. The troubleshooting actioner component internal/troubleshooting/actioner/actioner.go processes metadata from the metadata service endpoint and executes commands specified in the TroubleshootingAgent.Requesting...

6.3AI score0.02502EPSS
Exploits2References4
Rows per page
Query Builder