CVE-2026-35582: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in NationalSecurityAgency emissary
Emissary is a P2P based data-driven workflow engine. In versions 8.42.0 and below, Executrix.getCommand() is vulnerable to OS command injection because it interpolates temporary file paths into a /bin/sh -c shell command string without any escaping or input validation. The IN_FILE_ENDING and OUT_FILE_ENDING configuration keys flow directly into these paths, allowing a place author who can write or modify a .cfg file to inject arbitrary shell metacharacters that execute OS commands in the JVM process's security context. The framework already sanitizes placeName via an allowlist before embedding it in the same shell string, but applies no equivalent sanitization to file ending values. No runtime privileges beyond place configuration authorship, and no API or network access, are required to exploit this vulnerability. This is a framework-level defect with no safe mitigation available to downstream implementors, as Executrix provides neither escaping nor documented preconditions against metacharacters in file ending inputs. This issue has been fixed in version 8.43.0.
AI Analysis
Technical Summary
Emissary versions 8.42.0 and earlier contain an OS command injection vulnerability in Executrix.getCommand() due to unsanitized interpolation of file path endings into a /bin/sh -c command string. The IN_FILE_ENDING and OUT_FILE_ENDING configuration keys can be manipulated by a place author to inject shell metacharacters, leading to arbitrary command execution in the JVM process context. The framework sanitizes placeName but does not apply similar controls to file ending values. Exploitation requires only local place configuration file modification privileges, with no network or API access needed. This vulnerability is fixed in version 8.43.0.
Potential Impact
Successful exploitation allows an attacker with place configuration authorship to execute arbitrary OS commands within the JVM process's security context, potentially leading to full compromise of confidentiality, integrity, and availability of the affected system. No elevated privileges beyond place configuration authorship are required, and no network access is necessary. This can result in unauthorized command execution and control over the affected environment.
Mitigation Recommendations
This vulnerability is fixed in Emissary version 8.43.0. Users should upgrade to version 8.43.0 or later to remediate this issue. There is no safe mitigation available for downstream implementors in earlier versions because the framework does not provide escaping or validation for file ending inputs. Until upgrading, restrict place configuration file write access to trusted users only. Patch status is confirmed by the vendor advisory indicating the fix in version 8.43.0.
CVE-2026-35582: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in NationalSecurityAgency emissary
Description
Emissary is a P2P based data-driven workflow engine. In versions 8.42.0 and below, Executrix.getCommand() is vulnerable to OS command injection because it interpolates temporary file paths into a /bin/sh -c shell command string without any escaping or input validation. The IN_FILE_ENDING and OUT_FILE_ENDING configuration keys flow directly into these paths, allowing a place author who can write or modify a .cfg file to inject arbitrary shell metacharacters that execute OS commands in the JVM process's security context. The framework already sanitizes placeName via an allowlist before embedding it in the same shell string, but applies no equivalent sanitization to file ending values. No runtime privileges beyond place configuration authorship, and no API or network access, are required to exploit this vulnerability. This is a framework-level defect with no safe mitigation available to downstream implementors, as Executrix provides neither escaping nor documented preconditions against metacharacters in file ending inputs. This issue has been fixed in version 8.43.0.
CVSS v3.1
Score 8.8high
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Emissary versions 8.42.0 and earlier contain an OS command injection vulnerability in Executrix.getCommand() due to unsanitized interpolation of file path endings into a /bin/sh -c command string. The IN_FILE_ENDING and OUT_FILE_ENDING configuration keys can be manipulated by a place author to inject shell metacharacters, leading to arbitrary command execution in the JVM process context. The framework sanitizes placeName but does not apply similar controls to file ending values. Exploitation requires only local place configuration file modification privileges, with no network or API access needed. This vulnerability is fixed in version 8.43.0.
Potential Impact
Successful exploitation allows an attacker with place configuration authorship to execute arbitrary OS commands within the JVM process's security context, potentially leading to full compromise of confidentiality, integrity, and availability of the affected system. No elevated privileges beyond place configuration authorship are required, and no network access is necessary. This can result in unauthorized command execution and control over the affected environment.
Mitigation Recommendations
This vulnerability is fixed in Emissary version 8.43.0. Users should upgrade to version 8.43.0 or later to remediate this issue. There is no safe mitigation available for downstream implementors in earlier versions because the framework does not provide escaping or validation for file ending inputs. Until upgrading, restrict place configuration file write access to trusted users only. Patch status is confirmed by the vendor advisory indicating the fix in version 8.43.0.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-03T20:09:02.827Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69e2e080bdfbbecc59c723a7
Added to database: 4/18/2026, 1:38:08 AM
Last enriched: 4/25/2026, 2:53:43 AM
Last updated: 6/1/2026, 7:44:44 PM
Views: 88
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.