ZDI-26-275: Microsoft Qlib _mount_nfs_uri Command Injection Remote Code Execution Vulnerability

Kurzinfo

Veroeffentlicht: 2026-04-15 05:00 UTC Importiert: 2026-05-14 23:39 UTC Quelle-ID: zdi_pub uid_hash: 65af234741e9b8f7ef321770ff8c33694d3f6165fa8855a66c831e2d56b8b90d

Zero Day Initiative (Published)

Inhalt

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Microsoft Qlib. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8.

No data

Quellen-Details

Bezeichnung	Name	Kategorie	Tags	Zielgruppe	Sprache	Feed-URL
Zero Day Initiative (Published)	zdi_pub	threat_intel		-	de	https://www.zerodayinitiative.com/rss/published/

Zurueck zur Eintrags-Liste