CVE-2026-36365

N/A Unknown
Published: May 04, 2026 Modified: May 04, 2026
View on NVD

Description

An issue in Lymphatus caesium-image-compressor All versions up to and including commit 02da2c6 allows a local attacker to execute arbitrary code via the shutdownMachine and putMachineToSleep functions in PostCompressionActions.cpp

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
https://github.com/Lymphatus/caesium-image-compressor
Source: cve@mitre.org
https://github.com/Lymphatus/caesium-image-compressor/blob/main/src/utils/PostCompressionActions.cpp
Source: cve@mitre.org
https://github.com/Lymphatus/caesium-image-compressor/pull/376
Source: cve@mitre.org
https://github.com/mertsatilmaz/vulnerability-research/blob/main/advisories/CVE-2026-36365.md
Source: cve@mitre.org

4 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
Exploitation Status
Not in CISA KEV