CVE-2026-4802HIGH 8.0EPSS p51.7%

CVE-2026-4802CVE-2026-4802

Description

A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links in the system logs user interface (UI). An attacker can inject shell metacharacters and command substitutions into these parameters, leading to the execution of arbitrary shell commands on the affected system. This could result in a complete system compromise.

Scoring

CVSS 3.18.0 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS0.80% probability of exploitation · percentile 51.7% · 2026-06-19T12:03:05Z
Published2026-05-11
Last modified2026-05-20

Underlying weaknesses· 1

CWE-78

References

  1. https://access.redhat.com/security/cve/CVE-2026-4802
  2. https://bugzilla.redhat.com/show_bug.cgi?id=2451155
  3. https://github.com/cockpit-project/cockpit/blob/e204cd130/pkg/systemd/logsJournal.jsx#L206-L210
  4. http://www.openwall.com/lists/oss-security/2026/05/20/19

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection')cwe-780%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-4631
CVE
CVE-2026-44866
CVE
CVE-2026-44868
CVE
CVE-2026-44867
CVE
CVE-2026-44869
CVE
CVE-2026-44870
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.