What is CVE-2026-44343?

CVE-2026-44343 is a critical-severity vulnerability in Wgdashboard, classified under Improper Input Validation. CVSS score: 9.8/10. Published 2026-05-12.

How severe is CVE-2026-44343?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Improper input validation in Wgdashboard

CVE-2026-44343

WGDashboard is a dashboard for WireGuard VPN. Prior to 4.3.2, there are critical vulnerabilities affecting WGDashboard that, if exploited, could allow unauthorized parties to access the host file system without authentication. This vulnera…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.002 (42.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Wgdashboard — versions < 4.3.2

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

security-advisories@github.com (x_refsource_CONFIRM, Mitigation, Vendor Advisory)
security-advisories@github.com (Patch, x_refsource_MISC)

Frequently asked questions

What is CVE-2026-44343?: CVE-2026-44343 is a critical-severity vulnerability in Wgdashboard, classified under Improper Input Validation. CVSS score: 9.8/10. Published 2026-05-12.
How severe is CVE-2026-44343?: Critical severity. CVSS v3 base score is 9.8 out of 10.