UBUNTU-CVE-2026-4802

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/CVE-2026-4802
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2026-4802
Upstream
  • CVE-2026-4802
Published
2026-05-11T14:16:00Z
Modified
2026-06-24T11:01:44.616252746Z
Severity
  • 8.0 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
  • Ubuntu - medium
Summary
[none]
Details

A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links in the system logs user interface (UI). An attacker can inject shell metacharacters and command substitutions into these parameters, leading to the execution of arbitrary shell commands on the affected system. This could result in a complete system compromise.

References

Affected packages

Ubuntu:18.04:LTS
cockpit

Package

Name
cockpit
Purl
pkg:deb/ubuntu/cockpit?arch=source&distro=bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

Other
151-1
156-1
157-1
158-1
160-1
161-1
162-1
163-1
164-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "cockpit",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-bridge",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-dashboard",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-docker",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-machines",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-networkmanager",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-packagekit",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-storaged",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-system",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-tests",
            "binary_version": "164-1"
        },
        {
            "binary_name": "cockpit-ws",
            "binary_version": "164-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json"
Ubuntu:20.04:LTS
cockpit

Package

Name
cockpit
Purl
pkg:deb/ubuntu/cockpit?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

202.*
202.1-1
Other
204-1
206-1
207-1
208-1
210-1
211-1
212-1
213-1
215-1
214.*
214.1-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "cockpit",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-bridge",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-dashboard",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-machines",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-networkmanager",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-packagekit",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-pcp",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-storaged",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-system",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-tests",
            "binary_version": "215-1"
        },
        {
            "binary_name": "cockpit-ws",
            "binary_version": "215-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json"
Ubuntu:22.04:LTS
cockpit

Package

Name
cockpit
Purl
pkg:deb/ubuntu/cockpit?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

Other
252-1
256-1
257-1
258-1
259-1
260-1
261-1
262-1
263-1
264-1
264-1ubuntu0.*
264-1ubuntu0.22.04.1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "cockpit",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-bridge",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-networkmanager",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-packagekit",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-pcp",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-sosreport",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-storaged",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-system",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-tests",
            "binary_version": "264-1ubuntu0.22.04.1"
        },
        {
            "binary_name": "cockpit-ws",
            "binary_version": "264-1ubuntu0.22.04.1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json"
Ubuntu:24.04:LTS
cockpit

Package

Name
cockpit
Purl
pkg:deb/ubuntu/cockpit?arch=source&distro=noble

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

300.*
300.1-1
Other
303-1
304-1
305-1
306-1
307-1
308-1
309-1
311-1
312-1build2
314-1
310.*
310.1-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "cockpit",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-bridge",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-networkmanager",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-packagekit",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-pcp",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-sosreport",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-storaged",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-system",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-tests",
            "binary_version": "314-1"
        },
        {
            "binary_name": "cockpit-ws",
            "binary_version": "314-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json"
Ubuntu:25.10
cockpit

Package

Name
cockpit
Purl
pkg:deb/ubuntu/cockpit?arch=source&distro=questing

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

Other
333-1
337-1
339-1
342-1
343-1
345-1
346-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "cockpit",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-bridge",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-networkmanager",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-packagekit",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-sosreport",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-storaged",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-system",
            "binary_version": "346-1"
        },
        {
            "binary_name": "cockpit-ws",
            "binary_version": "346-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json"
Ubuntu:26.04:LTS
cockpit

Package

Name
cockpit
Purl
pkg:deb/ubuntu/cockpit?arch=source&distro=resolute

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

Other
346-1
348-1
350-1
352-1
354-1
355-1
356-1
360-1
353.*
353.1-1

Ecosystem specific 

{
    "binaries": [
        {
            "binary_name": "cockpit",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-bridge",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-networkmanager",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-packagekit",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-sosreport",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-storaged",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-system",
            "binary_version": "360-1"
        },
        {
            "binary_name": "cockpit-ws",
            "binary_version": "360-1"
        }
    ]
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2026/UBUNTU-CVE-2026-4802.json"