Q: What is the authoritative source for CVE-2026-6849?

CVE-2026-6849 (CVE-2026-6849) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

Q: How severe is CVE-2026-6849?

CVE-2026-6849 carries a HIGH CVSS 8.8 severity rating.

Question 1

What is CVE-2026-6849 — CVE-2026-6849?

Accepted Answer

Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer allows OS Command Injection. This issue affects Pardus OS My Computer: from <=0.7.5 before 0.8.0.

Question 2

What is the authoritative source for CVE-2026-6849?

Accepted Answer

CVE-2026-6849 (CVE-2026-6849) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

Question 3

How severe is CVE-2026-6849?

Accepted Answer

CVE-2026-6849 carries a HIGH CVSS 8.8 severity rating.

CVSS 3.1	8.8 (HIGH)
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS	1.01% probability of exploitation · percentile 58.5% · 2026-06-19T12:03:05Z
Published	2026-04-29
Last modified	2026-06-06

CVE-2026-6849CVE-2026-6849

Description

Scoring

Underlying weaknesses· 1

References

1

Related by meaning· 6