CVE 8.7 HIGH

OpenBullet2 0.3.2 Authenticated RCE via FileProxySource Script Upload_CVE-2026-25855

June 8, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

OpenBullet2 through version 0.3.2 contains a remote code execution vulnerability that allows authenticated users to execute arbitrary commands by uploading script files (.bat.ps1.sh) through the FileProxySource proxy loading feature. Attackers can upload malicious script files as proxy sources, causing the server to execute the scripts and return output as proxy lines, resulting in arbitrary command execution on the host as the process user.

AI Analysis

Remote code execution vulnerability in OpenBullet2 via FileProxySource script upload

Basic Information

ID CVE-2026-25855

Source VulnCheck

Published Jun 8, 2026 at 16:49

Affected Product

Vendor openbullet

Product openbullet2

Version 0.3.2

Affected Versions openbullet openbullet2 0.2.5

CWE Classification

CWE-78

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor OpenBullet

Product OpenBullet2

Version 0.3.2

References

{
    "lastseen": "",
    "description": "OpenBullet2 through version 0.3.2 contains a remote code execution vulnerability that allows authenticated users to execute arbitrary commands by uploading script files (.bat.ps1.sh) through the FileProxySource proxy loading feature. Attackers can upload malicious script files as proxy sources, causing the server to execute the scripts and return output as proxy lines, resulting in arbitrary command execution on the host as the process user.",
    "published": "2026-06-08T16:49:34.140Z",
    "modified": "2026-06-08T16:49:34.140Z",
    "type": "cve",
    "title": "OpenBullet2 0.3.2 Authenticated RCE via FileProxySource Script Upload",
    "source": "VulnCheck",
    "references": "https://hackernoon.com/one-empty-header-to-admin-how-an-auth-bypass-breaks-openbullet2\nhttps://www.vulncheck.com/advisories/openbullet2-authenticated-rce-via-fileproxysource-script-upload",
    "id": "CVE-2026-25855",
    "bulletinFamily": "",
    "cwe": [
        "CWE-78"
    ],
    "cvelist": null,
    "sourceData": "openbullet openbullet2 0.2.5",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "openbullet2",
    "version": "0.3.2",
    "vendor": "openbullet",
    "ai_description": "Remote code execution vulnerability in OpenBullet2 via FileProxySource script upload",
    "ai_severity": "High",
    "ai_vendor": "OpenBullet",
    "ai_product": "OpenBullet2",
    "ai_version": "0.3.2",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply