VYPR

Opens100

by S 100ExpertTeam

Source repositories

CVEs (1)

  • CVE-2026-22208CriFeb 17, 2026
    risk 0.62cvss 9.6epss 0.01

    OpenS100 (the reference implementation S-100 viewer) prior to commit 753cf29 contains a remote code execution vulnerability via an unrestricted Lua interpreter. The Portrayal Engine initializes Lua using luaL_openlibs() without sandboxing or capability restrictions, exposing…