CVE-2026-38945

HIGH NVD

CVSS Score 7.8

Severity HIGH

Published May 27, 2026

Vendor unknown

Description

Command injection in Raynet rvia version 12.6.4392.49-amd64.deb allows adversaries to execute arbitrary Java code via a crafted path that matches the improperly terminated search criteria of rvia's Java search using the find command.

References

https://github.com/Wise-Security/CVE-2026-38945
https://support.raynet.de/
https://github.com/Wise-Security/CVE-2026-38945/blob/main/CVE-2026-38945.sh