CyberRota
← Ana sayfaya dön

CVE-2026-51082

HIGH · CVSS 7.2

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-07-17T15:16:46.867 · Çekilme zamanı: 2026-07-17T18:33:21.667837+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-51082
Severity
HIGH
CVSS
7.2
EPSS
Yok

Orijinal NVD Açıklaması

A race condition between the vncproxy and vncwebsocket API calls in Proxmox Virtual Environment (PVE) 9.x pve-manager before 9.1.9 and 8.x before 8.4.19; qemu-server 9.x before 9.1.7 and 8.x before 8.4.7; and pve-container before 6.1.3 (PVE 9.x) and before 5.3.4 (PVE 8.x) allows an attacker with privileges to call "vncproxy" to hijack a VNC session that is established in parallel by a different user for a different VM.