CVE-2026-41283
OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code executi
CVSS
9.9
Crítico
EPSS
0.7%
p50
KEV
—
Exploit Today
15
0-100
Publicado: 4 jun 2026 · Última mod.: 15 jul 2026 · CWE-863 · CWE-749
0.7%EPSS · 30 días0.7%
2026-06-302026-07-16
OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to exfiltration of service credentials.
- github.comhttps://github.com/openstack/mistral/tags
- security.openstack.orghttps://security.openstack.org/ossa/OSSA-2026-020.html
- www.openwall.comhttps://www.openwall.com/lists/oss-security/2026/06/03/14
- www.openwall.comhttp://www.openwall.com/lists/oss-security/2026/06/03/14
- access.redhat.comhttps://access.redhat.com/security/cve/CVE-2026-41283
- bugzilla.redhat.comhttps://bugzilla.redhat.com/show_bug.cgi?id=2484607
- security.access.redhat.comhttps://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-41283.json
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2026-350298.8 ALT97.8%
——29LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. Prior to 1.83.0, the /config/update endpoint does not enforce admin role authorization. A user who is already authenticated into the platform can then use this endpoint to modify proxy configuration and environment variables, register custom pass-through endpoint handlers pointing to attacker-controlled Python code, achieving remote code execution, read arbitrary server files by setting UI_LOGO_PATH and fetching via /get_image, and take over other privileged accounts by overwriting UI_USERNAME and UI_PASSWORD environment variables. Fixed in v1.83.0.2dCVE-2026-479967.6 ALT96.9%
——29Adobe Commerce is affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. A high-privileged attacker could leverage this vulnerability to bypass security measures and gain unauthorized read access. Exploitation of this issue does not require user interaction. Scope is changed.2dCVE-2025-324622.8 BAJ86.9%
——26Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.3dCVE-2021-289367.5 ALT78.8%
——24The Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) Web management administrator password can be changed by sending a specially crafted HTTP GET request. The administrator username has to be known (default:admin) whereas no previous authentication is required.8dCVE-2021-406397.5 ALT64.4%
——19Improper access control in Jfinal CMS 5.1.0 allows attackers to access sensitive information via /classes/conf/db.properties&config=filemanager.config.js.8dCVE-2025-9611—63.2%
——19Microsoft Playwright MCP Server versions prior to 0.0.40 fails to validate the Origin header on incoming connections. This allows an attacker to perform a DNS rebinding attack via a victim’s web browser and send unauthorized requests to a locally running MCP server, resulting in unintended invocation of MCP tool endpoints.2d