What the vulnerability does
01Description
Improper input validation in Delphix Continuous Data connectors allows an authenticated user to execute arbitrary operating system commands on the staging or target host.
CVSS base score
8.7/10
CVSS vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Key dates
02Disclosure timeline
May 15, 2026
CVE published
May 15, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-9166 OS Command Injection in Atelmo Atemio AM 520 HD Full HD Satellite Receiver
CVE-2025-64756 glob CLI: Command injection via -c/--cmd executes matches with shell:true
CVE-2025-5441 Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 setDeviceURL os command injection
CVE-2021-3725 OS Command Injection in ohmyzsh/ohmyzsh
CVE-2026-0784 ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability
