CVE-2026-8654
CVE-2026-8654
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.7EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Ciclo de vida
15 may 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Improper input validation in Delphix Continuous Data connectors allows an authenticated user to execute arbitrary operating system commands on the staging or target host.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
Delphix Continuous data · Cassandra ConnectorDelphix Continuous data · CockroachDB ConnectorDelphix Continuous data · Couchbase ConnectorDelphix Continuous data · IBM Db2 ConnectorDelphix Continuous data · MangoDB ConnectorDelphix Continuous data · MSSQL on Linux ConnectorDelphix Continuous data · MySQL ConnectorDelphix Continuous data · Oracle Backup Ingestion ConnectorDelphix Continuous data · Oracle EBS ConnectorDelphix Continuous data · PostgreSQL ConnectorDelphix Continuous data · SAP HANA ConnectorDelphix Continuous data · YugabyteDB Connector