CVE-2026-4802 - Cockpit: cockpit: arbitrary command execution via crafted links in system logs ui
CVE ID :CVE-2026-4802 Published : May 11, 2026, 2:16 p.m. | 49 minutes ago Description :A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links in the s
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] The patching treadmill: Why traditional application security is no longer enough
- [CYBER] Instructure confirms hackers used Canvas flaw to deface portals
- [CYBER] Poor security left hackers inside water company network for nearly two years
- [CYBER] Dirty Frag is a new Linux bug putting your system at risk - and there's no easy fix yet
- [CYBER] 'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
- [CYBER] A fake OpenAI repository has taken top spot on Hugging Face — but all it does is push infostealer malware