CVE-2026-48687 – FastNetMon Juniper Router Integration OS Command Injection

CVE ID :CVE-2026-48687

Published : May 26, 2026, 4:16 p.m. | 15 minutes ago

Description :FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The _log() function in src/juniper_plugin/fastnetmon_juniper.php (lines 117-118) constructs shell commands by concatenating the $msg parameter directly into exec() calls: exec(“echo `date` “- {FASTNETMON] – ” . $msg . ” ” >> ” . $FILE_LOG_TMP). The $msg variable contains unsanitized data derived from command-line arguments argv[1] through argv[3], which represent the attack IP address, direction, and power. While FastNetMon’s C++ core currently passes IP addresses via inet_ntoa() (which only produces safe dotted-decimal notation), the PHP script performs no input validation or shell escaping. If the script is invoked directly, by another orchestration system, or if future code changes pass string-sourced IPs, arbitrary commands can be injected. The correct fix is to replace exec() with file_put_contents() or use escapeshellarg() on all parameters.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2026-9567 – GPAC MP4Box isom_intern.c MergeFragment null pointer dereference

CVE-2026-9566 – teableio teable Sign-up LoginPage.tsx cross site scripting

CVE-2026-9560 – OpenVPN Connect Privilege Escalation Vulnerability

CVE-2026-9170 – IBM WebSphere Application Server and WebSphere Application Server Liberty are affected DOS and RCE.