What is CVE-2026-44724?

CVE-2026-44724 is a high-severity vulnerability in Sebhildebrandt Systeminformation, classified under OS Command Injection. CVSS score: 7.8/10. Published 2026-05-27.

How severe is CVE-2026-44724?

High severity. CVSS v3 base score is 7.8 out of 10.

RCE in Sebhildebrandt Systeminformation

CVE-2026-44724

systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces() when an active NetworkManager connection profile name contai…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.001 (17.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Sebhildebrandt Systeminformation — versions >= 4.17.0, < 5.31.6

Weakness classification (CWE)

CWE-78 — OS Command Injection

References

security-advisories@github.com (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2026-44724?: CVE-2026-44724 is a high-severity vulnerability in Sebhildebrandt Systeminformation, classified under OS Command Injection. CVSS score: 7.8/10. Published 2026-05-27.
How severe is CVE-2026-44724?: High severity. CVSS v3 base score is 7.8 out of 10.