Unrated severityNVD Advisory· Published Feb 20, 2026· Updated Feb 20, 2026
Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds
CVE-2026-26093
Description
Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds 2.2.0.4 allows Command Injection via a crafted network request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<= 2.2.0.4? (description says '2.2.0.4' but does not say if all earlier versions are affected; it states the vulnerability exists in that version, implying it is present in 2.2.0.4)+ 1 more
- (no CPE)range: <= 2.2.0.4? (description says '2.2.0.4' but does not say if all earlier versions are affected; it states the vulnerability exists in that version, implying it is present in 2.2.0.4)
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- www.nozominetworks.com/labs/vulnerability-advisories-cve-2026-26093mitrethird-party-advisory
News mentions
0No linked articles in our index yet.