{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/67924?format=json","vulnerability_id":"VCID-49d8-4s95-akac","summary":"Lumiverse is a full-featured AI chat application. Prior to 0.9.7, when the primary toSmbPath(fullPath) call throws, the method falls back to a dirname/basename split and only validates the directory prefix. The basename is concatenated directly into the smbclient -c script without validation. smbclient interprets ; as a subcommand separator and !cmd as a local-shell escape that runs cmd on the host. A path whose directory component is clean but whose basename contains \"; !<cmd>; echo \" achieves arbitrary command execution on the Lumiverse server. This vulnerability is fixed in 0.9.7.","aliases":[{"alias":"CVE-2026-44449"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-44449","reference_id":"","reference_type":"","scores":[{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27711","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27912","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27938","published_at":"2026-06-13T12:55:00Z"},{"value":"0.00103","scoring_system":"epss","scoring_elements":"0.27928","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-44449"},{"reference_url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-4v38-9hqq-7j53","reference_id":"GHSA-4v38-9hqq-7j53","reference_type":"","scores":[{"value":"9.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-05-27T13:22:29Z/"}],"url":"https://github.com/prolix-oc/Lumiverse/security/advisories/GHSA-4v38-9hqq-7j53"}],"weaknesses":[{"cwe_id":88,"name":"Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')","description":"The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string."}],"exploits":[],"severity_range_score":"9.1 - 9.1","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-49d8-4s95-akac"}