CVE-2026-9101 – Prototype pollution in csv parsing

CVE ID :CVE-2026-9101

Published : May 20, 2026, 5:16 p.m. | 1 hour, 41 minutes ago

Description :Prototype pollution in csv parsing logic during import can lead to untrusted file paths (but not arguments) entering shell.openExternal after specific user behavior leading to “1-click” command execution.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-46532 – ESF-IDF: Heap Out-of-Bounds Read in Bluedroid AVRCP Target Parser

CVE-2026-45542 – ESF-IDF: Heap buffer overflow in protocomm Security2 over Bluetooth

CVE-2026-45541 – ESF-IDF: Remote Null Pointer Dereference in WebSocket Server

CVE-2026-45329 – ESF-IDF: Out-of-Bounds Read in ESP-TEE Secure Service Wrappers