Loading market data...
← Back to CVE feed

CVE-2026-12104

UNKNOWN View on NVD ↗

Description

OS command injection in the environment and tunnel configuration functionality in SIMA GmbH Bondix through version 1.25.7.5 on Linux allows an authenticated attacker with configuration write access to execute arbitrary operating-system commands via crafted configuration values passed to server-side scripts.

Published: Jun 19, 2026 14:16 UTC Modified: Jun 19, 2026 14:16 UTC