Description
Improper input validation in Delphix Continuous Data connectors allows an authenticated user to execute arbitrary operating system commands on the staging or target host.
Published: 2026-05-15
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 15 May 2026 11:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 15 May 2026 08:45:00 +0000

Type Values Removed Values Added
Title Authenticated OS Command Injection in Delphix Continuous Data Connectors

Fri, 15 May 2026 07:00:00 +0000

Type Values Removed Values Added
Description Improper input validation in Delphix Continuous Data connectors allows an authenticated user to execute arbitrary operating system commands on the staging or target host.
First Time appeared Delphix Continuous Data
Delphix Continuous Data cassandra Connector
Delphix Continuous Data cockroachdb Connector
Delphix Continuous Data couchbase Connector
Delphix Continuous Data ibm Db2 Connector
Delphix Continuous Data mangodb Connector
Delphix Continuous Data mssql On Linux Connector
Delphix Continuous Data mysql Connector
Delphix Continuous Data oracle Backup Ingestion Connector
Delphix Continuous Data oracle Ebs Connector
Delphix Continuous Data postgresql Connector
Delphix Continuous Data sap Hana Connector
Delphix Continuous Data yugabytedb Connector
Weaknesses CWE-78
CPEs cpe:2.3:a:delphix_continuous_data:cassandra_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:cockroachdb_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:couchbase_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:ibm_db2_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:mangodb_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:mssql_on_linux_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:mysql_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:oracle_backup_ingestion_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:oracle_ebs_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:postgresql_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:sap_hana_connector:*:*:*:*:*:*:*:*
cpe:2.3:a:delphix_continuous_data:yugabytedb_connector:*:*:*:*:*:*:*:*
Vendors & Products Delphix Continuous Data
Delphix Continuous Data cassandra Connector
Delphix Continuous Data cockroachdb Connector
Delphix Continuous Data couchbase Connector
Delphix Continuous Data ibm Db2 Connector
Delphix Continuous Data mangodb Connector
Delphix Continuous Data mssql On Linux Connector
Delphix Continuous Data mysql Connector
Delphix Continuous Data oracle Backup Ingestion Connector
Delphix Continuous Data oracle Ebs Connector
Delphix Continuous Data postgresql Connector
Delphix Continuous Data sap Hana Connector
Delphix Continuous Data yugabytedb Connector
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Delphix Continuous Data Cassandra Connector Cockroachdb Connector Couchbase Connector Ibm Db2 Connector Mangodb Connector Mssql On Linux Connector Mysql Connector Oracle Backup Ingestion Connector Oracle Ebs Connector Postgresql Connector Sap Hana Connector Yugabytedb Connector
cve-icon MITRE

Status: PUBLISHED

Assigner: Perforce

Published:

Updated: 2026-05-15T11:09:43.904Z

Reserved: 2026-05-15T05:14:12.757Z

Link: CVE-2026-8654

cve-icon Vulnrichment

Updated: 2026-05-15T11:09:28.873Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-15T07:16:20.397

Modified: 2026-05-15T14:11:57.190

Link: CVE-2026-8654

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-15T08:30:40Z

Weaknesses