Security Advisory

CVE-2026-32298

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-17 17:21:56

Last updated 2026-03-17 18:09:21

Assigner cisa-cg

State PUBLISHED

Description

The Angeet ES3 KVM does not properly sanitize user-supplied variables parsed by the cfg.lua script, allowing an authenticated attacker to execute OS-level commands.

← Browse all CVEs View on cve.org ↗