CyberRota
← Ana sayfaya dön

CVE-2026-11967

UNKNOWN · CVSS N/A EPSS %0.11 Public Exploit

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-12T14:16:30.103 · Çekilme zamanı: 2026-06-30T12:18:06.305339+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

Public Exploit Sinyali

Bu CVE için açıklama veya referanslarda public exploit / PoC / GitHub / Metasploit sinyali tespit edildi.

Tespit Edilen Sinyaller
arbitrary code execution code execution

Not: Bu bağlantılar yalnızca güvenlik araştırması ve doğrulama amacıyla listelenmiştir.

CVE
CVE-2026-11967
Severity
UNKNOWN
CVSS
N/A
EPSS
%0.11

Orijinal NVD Açıklaması

MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading a malicious DLL located in the same directory as the portable executable. Because the application automatically loads the winspool.drv library from that location during startup, an attacker with local access can place a specially crafted DLL alongside the executable to be executed when the victim launches the application.