216.73.217.139

CVE-2026-12195

· Published 04/07/2026 14:16 · Author: The MITRE Corporation

Labels: CVE-2026-12195

Essential information

Published
04/07/2026 14:16
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.5 HIGH (v4.0)
CISA KEV
No
CWE
CWE-78
CVSS vector

CVSS metrics

Description

myVesta is affected by an authenticated remote code execution vulnerability. Low privileged users can insert arbitrary commands as a part of the v_ftp_user parameter when deleting FTP usernames. This could result in the execution of commands as the admin user or takevoer of the admin user in myVesta.

NVD status

NVD
View on NVD