CVE-2026-31386EPSS p71.2%
CVE-2026-31386CVE-2026-31386
litespeedtech / litespeed_web_server
Description
OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injection vulnerability. An arbitrary OS command may be executed by an attacker with the administrative privilege.
Scoring
| CVSS | 7.2 () |
| Vector | CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
| EPSS | 1.51% probability of exploitation · percentile 71.2% · 2026-06-18T12:00:27Z |
| Last modified | 2026-06-08 |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.