CVE-2026-36576 in docker-wkhtmltopdf-aasinfo

Summary

by MITRE • 06/03/2026

An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted POST request.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

MITRE

Reservation

04/06/2026

Disclosure

06/03/2026

Moderation

accepted

Entry

VDB-368141

CPE

ready

CWE

CWE-78 (confirmed)

CVSS

5.5 (VulDB)

EPSS

0.00256

KEV

Activities

low

Sector

Police, Telecommunication, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-36576
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-36576
CVE Details	https://www.cvedetails.com/cve/CVE-2026-36576/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!