CVE-2026-48687

NVD data not available for this CVE. It may be pending analysis or not yet published.

Related Intelligence (1)

NVD CRITICAL: CVE-2026-48687 — FastNetMon Community Edition through 1.2.9 contains an OS command injection vuln...

FastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The _log() function in src/juniper_plugin/fastnetmon_juniper.php (lines 117-118) constructs shell commands by concatenating the $msg parameter directly into exec() calls: exec("echo `date` \"- {FASTNETMON] - " . $msg . " \" >> " . $FILE_LOG_TMP). The $msg variable con

CVE-2026-48687

May 26, 2026NIST NVD