CVE-2026-27476 - RustFly 2.0.0 Command Injection via UDP Remote Control

CVE ID : CVE-2026-27476 Published : Feb. 19, 2026, 9:18 p.m. | 1 hour, 24 minutes ago Description : RustFly 2.0.0 contains a command injection vulnerability in its remote UI control mechanism that accepts hex-encoded instructions over UDP port 5005 without proper sanitization. Attackers can send crafted hex-encoded payloads containing system commands to execute arbitrary operations on the target system, including reverse shell establishment and command execution. Severity: 9.8 | CRITICAL Visit the link for more details, such as CVSS details, affected products, timeline, and more...