Threats Tagged 'cve-2026-32311'
View all threats tagged with 'cve-2026-32311'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-32311'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-32311: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in reconurge flowsintCVE-2026-32311 0 CVE-2026-32311 is a critical OS command injection vulnerability in the open-source OSINT tool Flowsint by reconurge. The flaw allows a remote attacker to create a sketch and trigger the 'org_to_asn' transformer on an organization node, leading to arbitrary OS command execution as root via shell metacharacters and a Docker container escape. This vulnerability affects versions of Flowsint prior to commit b52cbbb904c8013b74308d58af88bc7dbb1b055c. The problematic code appears to have been removed in that commit. No official patch or advisory is explicitly provided, and no known exploits are reported in the wild. The CVSS 4. 0 score is 9. 3, indicating critical severity. Join the discussion | CVE Database V5 | 04/20/2026, 19:56:32 UTC Added: 04/20/2026, 20:01:07 UTC |
Showing 1 to 1 of 1 result