CVE-2026-33208 | Roxy-WI up to 8.2.6.3 /config/ words os command injection (GHSA-7m2h-gmvj-cjx2)

A vulnerability identified as critical has been detected in Roxy-WI up to 8.2.6.3. Affected by this vulnerability is an unknown functionality of the file /config/. The manipulation of the argument words leads to os command injection.

This vulnerability is traded as CVE-2026-33208. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More