cyberHIGH2026-05-05 19:24 UTC

CVE-2026-34458 - Sandboxie-Plus privilege escalation via INI CRLF injection bypassing EditAdminOnly

CVE ID :CVE-2026-34458 Published : May 5, 2026, 7:24 p.m. | 1 hour, 3 minutes ago Description :Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, an INI injection vulnerability allows any standard local user to bypass configuration re

ORIGINAL SOURCE →via CVE Feed Latest

⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

[CYBER] Android ADB Auth Bypass Proof-of-Concept: CVE-2026-0073
[CYBER] New stealthy Quasar Linux malware targets software developers
[CYBER] (LEAD) Coupang swings to net loss in Q1 amid fallout from data breach
[CYBER] Question regarding VDP
[CYBER] New CVEs in Ollama & DAEMON Tools; Webhooks Lack Signature Checks
[CYBER] CVE-2026-40934 - jupyter-server authentication cookies remain valid after password reset due to static cookie secret

Editorial policy · Report a correction