CVE-2026-5463 in pymetasploit3정보

요약 (영어)

Command injection vulnerability in console.run_module_with_output() in pymetasploit3 through version 1.0.6 allows attackers to inject newline characters into module options such as RHOSTS. This breaks the intended command structure and causes the Metasploit console to execute additional unintended commands, potentially leading to arbitrary command execution and manipulation of Metasploit sessions.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

책임이 있는

TuranSec

예약하다

2026. 04. 03.

공개

2026. 04. 03.

상태

확인됨

엔트리

VulDB provides additional information and datapoints for this CVE:

아이디취약성CWE악용 대책CVE
355061Dan McInerney pymetasploit3 console.run_module_with_output 권한 상승77정의되지 않음정의되지 않음CVE-2026-5463

설명

CPE

CWE

CVSS

익스플로잇

역사

차이

연결하다

위협 인텔리전스

API JSON

API XML

API CSV

출처

이전개요다음

Want to know what is going to be exploited?

We predict KEV entries!