CVE Catalog

CVE-2026-47367

CriticalCVSS 9.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.21%

43th percentile — higher than 43% of all known CVEs

Summary

An Improper Input Validation vulnerability in UID Enterprise Agent allows a malicious actor with network access and low privileges to exploit it for Command Injection on the host device.

Risk Assessment

The organization may face unauthorized command execution on devices, potentially leading to data loss or system takeover.

Recommendation

It is recommended to conduct a security audit and update UID Enterprise Agent to mitigate this vulnerability.

Original NVD description (English source)

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UID Enterprise Agent to execute a Command Injection on the host device.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS