CVE-2026-3587

Critical

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full…

CERTVDE·CWE-912·Published 2026-03-23

CVSS

10.0

EPSS

0.01

KEV

Exploits

cve.orgen

160 chars

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.

NVDen

160 chars

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device.

Un atacante remoto no autenticado puede realizar un exploit de una función oculta en el indicador de la CLI para escapar de la interfaz restringida y obtener acceso de root al sistema operativo subyacente basado en Linux, lo que lleva al compromiso total del dispositivo.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	10.0	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
3.1	Secondary	NVD	10.0	3.9	6.0	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H