Home / Vulnerability Intelligence / CVE-2026-27811

CVE-2026-27811 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 19, 2026

Roxy-WI - Command Injection

Published: March 18, 2026Updated: March 19, 2026PoC AvailableRemote Exploitable

Overview

Roxy-WI < 8.2.6.3 contains a command injection caused by unsafe string formatting in /config/compare/<service>/<server_ip>/show endpoint, letting authenticated users execute arbitrary system commands on the host.

Severity & Score

Severity: High

CVSS Score: 8.8

EPSS Score: 78.3%(Probability of exploitation in next 30 days)

Impact

Authenticated users can execute arbitrary system commands, potentially leading to full system compromise.

Mitigation

Upgrade to version 8.2.6.3 or later.

References

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 18, 2026

🟠 CVE-2026-27811 - High (8.8) Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.3, a command injection vulnerability exists in the `/config/compare///show` endpoint, allowed authenticated users to execute arbitrary sy... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-27811/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-27811
Severity: High
CVSS Score: 8.8
Type: command_injection
Status: confirmed
EPSS: 78.3%
Social Posts: 1

CWE

CWE-77

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

78.3%Probability of exploitation in the next 30 days