CVE 8.8 HIGH

OS Command Injection in TUBITAK BILGEM’s Pardus OS My Computer_CVE-2026-6849

April 29, 2026 invoker category_cve

8.8 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer allows OS Command Injection.

This issue affects Pardus OS My Computer: from <=0.7.5 before 0.8.0.

AI Analysis

OS Command Injection vulnerability in Pardus OS My Computer

Basic Information

ID CVE-2026-6849

Source TR-CERT

Published Apr 29, 2026 at 14:42

Affected Product

Vendor TUBITAK BILGEM Software Technologies Research Institute

Product Pardus OS My Computer

Version <=0.7.5

Affected Versions TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer <=0.7.5

CWE Classification

CWE-78

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor TUBITAK BILGEM

Product Pardus OS My Computer

Version <=0.7.5

References

www.usom.gov.tr /bildirim/tr-26-0131

{
    "lastseen": "",
    "description": "Improper neutralization of special elements used in an OS command ('OS command injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer allows OS Command Injection.\n\nThis issue affects Pardus OS My Computer: from <=0.7.5 before 0.8.0.",
    "published": "2026-04-29T14:42:29.339Z",
    "modified": "2026-04-29T14:42:29.339Z",
    "type": "cve",
    "title": "OS Command Injection in TUBITAK BILGEM's Pardus OS My Computer",
    "source": "TR-CERT",
    "references": "https://www.usom.gov.tr/bildirim/tr-26-0131",
    "id": "CVE-2026-6849",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "TUBITAK BILGEM Software Technologies Research Institute Pardus OS My Computer <=0.7.5",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Pardus OS My Computer",
    "version": "<=0.7.5",
    "vendor": "TUBITAK BILGEM Software Technologies Research Institute",
    "ai_description": "OS Command Injection vulnerability in Pardus OS My Computer",
    "ai_severity": "High",
    "ai_vendor": "TUBITAK BILGEM",
    "ai_product": "Pardus OS My Computer",
    "ai_version": "<=0.7.5",
    "ai_score": 8.8
}

💭 Join the Security Discussion ❌ Cancel Reply