CVE-2026-25512: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Intermesh groupoffice
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, and 26.0.5, there is a remote code execution (RCE) vulnerability in Group-Office. The endpoint email/message/tnefAttachmentFromTempFile directly concatenates the user-controlled parameter tmp_file into an exec() call. By injecting shell metacharacters into tmp_file, an authenticated attacker can execute arbitrary system commands on the server. This issue has been patched in versions 6.8.150, 25.0.82, and 26.0.5.
CVE-2026-25512: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Intermesh groupoffice
Description
Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, and 26.0.5, there is a remote code execution (RCE) vulnerability in Group-Office. The endpoint email/message/tnefAttachmentFromTempFile directly concatenates the user-controlled parameter tmp_file into an exec() call. By injecting shell metacharacters into tmp_file, an authenticated attacker can execute arbitrary system commands on the server. This issue has been patched in versions 6.8.150, 25.0.82, and 26.0.5.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-02-02T18:21:42.486Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 6983afd7f9fa50a62fabdb4c
Added to database: 2/4/2026, 8:45:11 PM
Last updated: 2/4/2026, 8:45:13 PM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2026-25511: CWE-918: Server-Side Request Forgery (SSRF) in Intermesh groupoffice
HighCVE-2026-25499: CWE-1188: Insecure Default Initialization of Resource in bpg terraform-provider-proxmox
HighCVE-2026-1554: CWE-91 XML Injection (aka Blind XPath Injection) in Drupal Central Authentication System (CAS) Server
UnknownCVE-2026-1553: CWE-863 Incorrect Authorization in Drupal Drupal Canvas
UnknownCVE-2026-0948: CWE-288 Authentication Bypass Using an Alternate Path or Channel in Drupal Microsoft Entra ID SSO Login
UnknownActions
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.