oM noM Security Feeds cve
vulnerability context

CVE-2026-12195

CWE-78OTX 1 pulse

myVesta is affected by an authenticated remote code execution vulnerability. Low privileged users can insert arbitrary commands as a part of the v_ftp_user parameter when deleting FTP usernames. This could result in the execution of commands as the admin user or takevoer of the admin user in myVesta.

Published 2026-07-04

details

CISA KEV status
Not in catalog
CWE
CWE-78
OTX pulses
1 total, 0 recent

source mentions 2

source consensus

  • Bluesky
Want the 3-bullet summary of CVE-2026-12195, plus webhook alerts when KEV is updated? Pro is $10/mo.