CVE-2026-5433
N/AUpdated
Published: 21 May 2026
Published
21 May 2026
Modified
02 June 2026
KEV Added
—
Patch
—
CVSS Score
N/A
EPSS Score
0.0032
55.1th percentile
Risk Priority
0
60% EPSS · 20% KEV · 20% CVSS
Summary
CVE-2026-5433 is a uncategorised-severity an unspecified weakness vulnerability. Its CVSS base score is N/A.
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 44.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-31253
Vulnerability details
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?
Command injection in web interface directly enables RCE via public-facing application exploitation.
Confidence: HIGH · MITRE ATT&CK Enterprise v18.1
CVEs Like This One
CVE-2024-39759Shared CWE-77
CVE-2025-43953Shared CWE-77
CVE-2026-3854Shared CWE-77
CVE-2024-23971Shared CWE-77
CVE-2024-55062Shared CWE-77
CVE-2026-22719Shared CWE-77
CVE-2024-34166Shared CWE-77
CVE-2025-63406Shared CWE-77
CVE-2025-56425Shared CWE-77
CVE-2026-26093Shared CWE-77
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.
References
- No references listed