cbcvebase.
CVE-2026-5935
published 2026-04-23

CVE-2026-5935: IBM Total Storage Service Console (TSSC) / TS4500 IMC 9.2, 9.3, 9.4, 9.5, 9.6 TSSC/IMC could allow an unauthenticated user to execute arbitrary commands with…

PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.34%
25.9th percentile
IBM Total Storage Service Console (TSSC) / TS4500 IMC 9.2, 9.3, 9.4, 9.5, 9.6 TSSC/IMC could allow an unauthenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input.

Affected

11 ranges
VendorProductVersion rangeFixed in
ibmtotal_storage_service_console
ibmtotal_storage_service_console
ibmtotal_storage_service_console
ibmtotal_storage_service_console
ibmtotal_storage_service_console
ibmtotal_storage_service_console_ts4500_imc9.2.0 – 9.6.0
ibmts4500_imc
ibmts4500_imc
ibmts4500_imc
ibmts4500_imc
ibmts4500_imc
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.