CVE-2026-5967
published 2026-04-20CVE-2026-5967: ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability. Authenticated remote attackers with shell access can inject OS…
PriorityP357high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.37%
29.0th percentile
ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability. Authenticated remote attackers with shell access can inject OS commands and execute them with root privileges.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| teamt5 | threatsonar_anti-ransomware | < 4.0.0 | 4.0.0 |
| teamt5 | threatsonar_anti-ransomware | <= 4.0.0 | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv4.08.7HIGHCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
TeamT5 ThreatSonar Anti-Ransomware up to 4.0.0 os command injection (EUVD-2026-23800)
vuldb·2026-04-20·CVSS 8.7
CVE-2026-5967 [HIGH] TeamT5 ThreatSonar Anti-Ransomware up to 4.0.0 os command injection (EUVD-2026-23800)
A vulnerability, which was classified as critical, has been found in TeamT5 ThreatSonar Anti-Ransomware up to 4.0.0. This affects an unknown function. The manipulation leads to os command injection.
This vulnerability is traded as CVE-2026-5967. It is possible to initiate the attack remotely. There is no exploit available.
GHSA
GHSA-49hc-46g6-4c47: ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability
ghsa_unreviewed·2026-04-20
CVE-2026-5967 [HIGH] CWE-78 GHSA-49hc-46g6-4c47: ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability
ThreatSonar Anti-Ransomware developed by TeamT5 has an Privilege Escalation vulnerability. Authenticated remote attackers with shell access can inject OS commands and execute them with root privileges.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-20
Published