CyberRota
← Ana sayfaya dön

CVE-2026-10037

HIGH · CVSS 8.8

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-08T22:17:12.500 · Çekilme zamanı: 2026-07-09T00:07:18.644563+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-10037
Severity
HIGH
CVSS
8.8
EPSS
Yok
Ubuntu

Orijinal NVD Açıklaması

A sandbox escape vulnerability exists in the OpenJDK packages provided in Ubuntu. The .jar MIME handlers installed by these packages execute files marked as executable when the mailcap package is installed. A compromised or malicious sandboxed application with access to the OpenURI portal via xdg-desktop-portal-gtk can write a malicious .jar file to the host file system, set its executable bit, and trigger the handler to execute arbitrary code outside of the sandbox environment.