CVE-2026-23520 | getarcaneapp arcane up to 1.12.x Updater Service os command injection

A vulnerability identified as critical has been detected in getarcaneapp arcane up to 1.12.x. This vulnerability affects unknown code of the component Updater Service. The manipulation leads to os command injection.

This vulnerability is traded as CVE-2026-23520. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More