CVE 9.8 CRITICAL

CVE-2026-38992_CVE-2026-38992

April 30, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlying infrastructure via the MongoLite $func operator.

AI Analysis

Arbitrary code execution via the filter parameter within multiple endpoints

Basic Information

ID CVE-2026-38992

Source mitre

Published Apr 29, 2026 at 00:00

Modified Apr 30, 2026 at 15:22

Affected Product

Vendor Cockpit-HQ

Product Cockpit

Version v2.13.5 and earlier

Affected Versions n/a n/a n/a

CWE Classification

CWE-94

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Cockpit-HQ

Product Cockpit

Version v2.13.5 and earlier

References

{
    "lastseen": "",
    "description": "Cockpit v2.13.5 and earlier is vulnerable to arbitrary code execution via the filter parameter within multiple endpoints. This vulnerability allows an attacker to run system commands on the underlying infrastructure via the MongoLite $func operator.",
    "published": "2026-04-29T00:00:00.000Z",
    "modified": "2026-04-30T15:22:49.472Z",
    "type": "cve",
    "title": "CVE-2026-38992",
    "source": "mitre",
    "references": "https://github.com/Cockpit-HQ/Cockpit/releases/tag/2.14.0\nhttps://felsec.com/posts/cockpit-cms-2.13.5-multi-vulns/",
    "id": "CVE-2026-38992",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "n/a n/a n/a",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Cockpit",
    "version": "v2.13.5 and earlier",
    "vendor": "Cockpit-HQ",
    "ai_description": "Arbitrary code execution via the filter parameter within multiple endpoints",
    "ai_severity": "Critical",
    "ai_vendor": "Cockpit-HQ",
    "ai_product": "Cockpit",
    "ai_version": "v2.13.5 and earlier",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply