Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 17 Jun 2026 10:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | OS Command Injection in openlabs docker‑wkhtmltopdf‑aas via Crafted POST Request |
Tue, 16 Jun 2026 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | OS Command Injection in openlabs docker‑wkhtmltopdf‑aas via Crafted POST Request |
Fri, 05 Jun 2026 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Openlabs
Openlabs docker-wkhtmltopdf-aas |
|
| Vendors & Products |
Openlabs
Openlabs docker-wkhtmltopdf-aas |
Wed, 03 Jun 2026 21:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | OS Command Injection in Docker‑based wkhtmltopdf‑as Service |
Wed, 03 Jun 2026 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Wed, 03 Jun 2026 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | OS Command Injection in Docker‑based wkhtmltopdf‑as Service | |
| Weaknesses | CWE-78 |
Wed, 03 Jun 2026 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted POST request. | |
| References |
|
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2026-06-03T18:28:36.422Z
Reserved: 2026-04-06T00:00:00.000Z
Link: CVE-2026-36576
Updated: 2026-06-03T18:26:28.402Z
Status : Deferred
Published: 2026-06-03T16:16:28.877
Modified: 2026-06-04T16:26:20.550
Link: CVE-2026-36576
No data.
OpenCVE Enrichment
Updated: 2026-06-18T07:30:05Z