CVE-2026-34977: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Zeecka AperiSolve
CVE-2026-34977 is a critical OS command injection vulnerability in Zeecka AperiSolve versions prior to 3. 2. 1. The vulnerability arises because user-supplied passwords accompanying JPEG uploads are passed unsanitized into an expect command executed via bash, allowing unauthenticated attackers to achieve root-level remote code execution within the worker container. This access enables attackers to read and write all user-uploaded images, analysis results, and plaintext passwords stored on disk. Due to the container's shared Docker network with unauthenticated PostgreSQL and Redis services, attackers can pivot to dump databases or manipulate job queues, potentially poisoning results for other users. If Docker socket or host volume mounts are present, full host compromise and website defacement are possible. The vulnerability is fixed in version 3. 2. 1.
AI Analysis
Technical Summary
Aperi'Solve versions before 3.2.1 allow unauthenticated OS command injection through an unsanitized password parameter passed into an expect command executed by bash. This leads to root-level remote code execution inside the worker container. The container's network configuration with unauthenticated PostgreSQL and Redis services allows further lateral movement and data compromise. Host compromise is possible if Docker socket or host volume mounts exist. The issue is addressed in version 3.2.1.
Potential Impact
An unauthenticated attacker can gain root-level remote code execution inside the worker container, enabling full read/write access to sensitive user data including images, analysis results, and plaintext passwords. The attacker can also pivot to unauthenticated PostgreSQL and Redis services on the Docker network to dump databases or manipulate job queues. If Docker socket or host volume mounts are configured, the attacker may escalate to full host compromise and deface the website. This represents a critical security risk to confidentiality, integrity, and availability of the system and data.
Mitigation Recommendations
This vulnerability is fixed in Aperi'Solve version 3.2.1. Users should upgrade to version 3.2.1 or later to remediate this issue. No other official remediation or temporary fixes are documented. Patch status is not explicitly stated beyond the fix in 3.2.1; verify with the vendor advisory for the latest guidance.
CVE-2026-34977: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Zeecka AperiSolve
Description
CVE-2026-34977 is a critical OS command injection vulnerability in Zeecka AperiSolve versions prior to 3. 2. 1. The vulnerability arises because user-supplied passwords accompanying JPEG uploads are passed unsanitized into an expect command executed via bash, allowing unauthenticated attackers to achieve root-level remote code execution within the worker container. This access enables attackers to read and write all user-uploaded images, analysis results, and plaintext passwords stored on disk. Due to the container's shared Docker network with unauthenticated PostgreSQL and Redis services, attackers can pivot to dump databases or manipulate job queues, potentially poisoning results for other users. If Docker socket or host volume mounts are present, full host compromise and website defacement are possible. The vulnerability is fixed in version 3. 2. 1.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Aperi'Solve versions before 3.2.1 allow unauthenticated OS command injection through an unsanitized password parameter passed into an expect command executed by bash. This leads to root-level remote code execution inside the worker container. The container's network configuration with unauthenticated PostgreSQL and Redis services allows further lateral movement and data compromise. Host compromise is possible if Docker socket or host volume mounts exist. The issue is addressed in version 3.2.1.
Potential Impact
An unauthenticated attacker can gain root-level remote code execution inside the worker container, enabling full read/write access to sensitive user data including images, analysis results, and plaintext passwords. The attacker can also pivot to unauthenticated PostgreSQL and Redis services on the Docker network to dump databases or manipulate job queues. If Docker socket or host volume mounts are configured, the attacker may escalate to full host compromise and deface the website. This represents a critical security risk to confidentiality, integrity, and availability of the system and data.
Mitigation Recommendations
This vulnerability is fixed in Aperi'Solve version 3.2.1. Users should upgrade to version 3.2.1 or later to remediate this issue. No other official remediation or temporary fixes are documented. Patch status is not explicitly stated beyond the fix in 3.2.1; verify with the vendor advisory for the latest guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-03-31T19:38:31.617Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69d3dfa80a160ebd92c701de
Added to database: 4/6/2026, 4:30:32 PM
Last enriched: 4/14/2026, 4:05:17 PM
Last updated: 5/22/2026, 7:07:50 PM
Views: 43
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.