CVE 9.1 CRITICAL

CVE-2026-32999_CVE-2026-32999

May 28, 2026 invoker category_cve

9.1 / 10

CRITICAL

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Description

Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices.

AI Analysis

Remote Code Execution (RCE) vulnerability in Comet Backup server due to insufficient character filtering in the backup agent signing module

Basic Information

ID CVE-2026-32999

Source hackerone

Published May 28, 2026 at 04:01

Affected Product

Vendor WebPros

Product Comet Backup

Affected Versions WebPros Comet Backup 0
WebPros Comet Backup 0

CWE Classification

CWE-94

AI Assessment

AI Score 9.1 / 10

AI Severity Critical

Vendor WebPros

Product Comet Backup

References

support.cometbackup.com /hc/en-us/articles/40655100268439--CVE-2026-32999-RCE-on-Comet-Server-via-branding-configuration

{
    "lastseen": "",
    "description": "Insufficient character filtering in backup agent signing module on Comet Backup server allows authenticated tenant administrator to execute an arbitrary code on behalf of a privileged user on the affected server and connected devices.",
    "published": "2026-05-28T04:01:38.421Z",
    "modified": "2026-05-28T04:01:38.421Z",
    "type": "cve",
    "title": "CVE-2026-32999",
    "source": "hackerone",
    "references": "https://support.cometbackup.com/hc/en-us/articles/40655100268439--CVE-2026-32999-RCE-on-Comet-Server-via-branding-configuration",
    "id": "CVE-2026-32999",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "WebPros Comet Backup 0\nWebPros Comet Backup 0",
    "sourceHref": "",
    "cvss": {
        "score": 9.1,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Comet Backup",
    "version": "0",
    "vendor": "WebPros",
    "ai_description": "Remote Code Execution (RCE) vulnerability in Comet Backup server due to insufficient character filtering in the backup agent signing module",
    "ai_severity": "Critical",
    "ai_vendor": "WebPros",
    "ai_product": "Comet Backup",
    "ai_version": "0",
    "ai_score": 9.1
}

💭 Join the Security Discussion ❌ Cancel Reply