QSearchQSearch

CVE-2026-11879

MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading malicious DLLs from a...

Published: 2026-06-12 · Last updated: 2026-06-12

Severity and scoring

CWE
CWE-427

Description

MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading malicious DLLs from a temporary directory that is predictable and can be modified by the user. During startup, the application searches for specific DLLs in this location before resorting to the system’s secure paths, enabling an attacker with local access to place a specially crafted DLL to be executed automatically when the victim launches the application.

Source: NVD

References

Related CVEs

Same CWE

  • CVE-2026-11967 MobaXterm Personal Edition (Portable), in its 26.3 version (Build 5154), allows arbitrary code execution by loading a malicious DLL locat...
  • CVE-2026-53813 OpenClaw before 2026.4.25 contains a path traversal vulnerability in memory-core artifact loading where workspace state influences local ... (7.8 HIGH)
  • CVE-2026-7870 IBM i 7.6, 7.5, 7.4, and 7.3 could allow a user to gain elevated privileges due to an unqualified library call (8.8 HIGH)
  • CVE-2026-10847 A local privilege escalation vulnerability exists in Check Point Identity Agent Full for Windows OS (7.8 HIGH)
  • CVE-2026-8637 A potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local auth... (7.8 HIGH)