CVE-2026-1961HIGH 8.0EPSS p68.5%

CVE-2026-1961CVE-2026-1961

Description

A flaw was found in Foreman. A remote attacker could exploit a command injection vulnerability in Foreman's WebSocket proxy implementation. This vulnerability arises from the system's use of unsanitized hostname values from compute resource providers when constructing shell commands. By operating a malicious compute resource server, an attacker could achieve remote code execution on the Foreman server when a user accesses VM VNC console functionality. This could lead to the compromise of sensitive credentials and the entire managed infrastructure.

Scoring

CVSS 3.18.0 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS1.38% probability of exploitation · percentile 68.5% · 2026-06-18T12:00:27Z
Published2026-03-26
Last modified2026-04-08

Underlying weaknesses· 1

CWE-78

References

  1. https://access.redhat.com/errata/RHSA-2026:5968
  2. https://access.redhat.com/errata/RHSA-2026:5970
  3. https://access.redhat.com/errata/RHSA-2026:5971
  4. https://access.redhat.com/security/cve/CVE-2026-1961
  5. https://bugzilla.redhat.com/show_bug.cgi?id=2437036
  6. http://www.openwall.com/lists/oss-security/2026/03/27/3

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection')cwe-780%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-1531
CVE
CVE-2025-10622
CVE
CVE-2026-8111
CVE
CVE-2025-61492
CVE
CVE-2026-20764
CVE
CVE-2025-59361
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.