CVE-2026-2333
CRITICAL WAF: High
CVSS 9.8
Published: 2026-02-20
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds 2.2.0.4 allows Command Injection via a crafted network request.
WAF Coverage Analysis
Command Injection
High WAF Coverage
OWASP: A03:2021 Injection
932xxx - Remote Code Execution
Affected Software
| Vendor | Product | Version |
|---|---|---|
| owlcyberdefense | opds-talon | 2.2.0.4 |
| owlcyberdefense | opds-talon | 2.2.0.4 |
References
- www.nozominetworks.com (Broken Link)