{"uuid": "68d3f3d4-7e6e-4256-87a0-d668391985aa", "vulnerability": {"vulnId": "CVE-2026-4631", "altId": []}, "gcve": {"origin_uuid": "caeb2787-0d58-4236-9039-7c86c3e566f3", "gna": 1, "object_uuid": "68d3f3d4-7e6e-4256-87a0-d668391985aa"}, "status": {"exploited": true, "status_reason": "confirmed", "status_updated_at": "2026-07-08T00:00:00+00:00"}, "timestamps": {"asserted_at": "2026-07-08T00:00:00+00:00", "recorded_at": "2026-07-09T09:00:01+00:00", "first_seen_at": "2026-07-08T00:00:00+00:00"}, "scope": {"notes": "Cockpit: cockpit: unauthenticated remote code execution due to ssh command-line argument injection | Affected: Red Hat / Red Hat Enterprise Linux 10, Red Hat Enterprise Linux 10.0 Extended Update Support, Red Hat Enterprise Linux 9, Red Hat Enterprise Linux 9.6 Extended Update Support, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8 | CVSS: 9.8 (CRITICAL) | EPSS: 0.142 | Used in malware: unknown | Not yet in CISA KEV: True"}, "evidence": [{"type": "public_report", "source": "kevintel", "signal": "successful_exploitation", "confidence": 0.7, "details": {"feed": "KEVIntel (kevintel.com)", "title": "Cockpit: cockpit: unauthenticated remote code execution due to ssh command-line argument injection", "vendor": "Red Hat", "product": "Red Hat Enterprise Linux 10, Red Hat Enterprise Linux 10.0 Extended Update Support, Red Hat Enterprise Linux 9, Red Hat Enterprise Linux 9.6 Extended Update Support, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8", "added_date": "2026-07-08T00:00:00.000Z", "cvss_score": 9.8, "epss_score": 0.142, "cvss_severity": "CRITICAL", "epss_percentile": 0.96147, "used_in_malware": "unknown", "ahead_of_cisa_kev": null, "not_yet_in_cisa_kev": true}}], "references": [{"id": "CVE-2026-4631", "url": "https://www.cve.org/CVERecord?id=CVE-2026-4631"}, {"id": "kevintel", "url": "https://kevintel.com/CVE-2026-4631"}]}
