CVE-2026-9645EPSS p23.1%

CVE-2026-9645CVE-2026-9645

Description

Exposed methods allow authenticated users to create and execute arbitrary JavaScript code on the server. The scripts execute with full access, enabling complete system compromise as commands are executed as root.

Scoring

CVSS 9.9 ()
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS0.32% probability of exploitation · percentile 23.1% · 2026-06-19T12:03:05Z
Last modified2026-06-01

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-2701
CVE
CVE-2025-29902
CVE
CVE-2026-21628
CVE
CVE-2026-6356
CVE
CVE-2025-41699
CVE
CVE-2025-1127
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.