CVE-2026-34458 | sandboxie-plus Sandboxie up to 1.17.2 on Windows Background Service Sandboxie.ini crlf injection

A vulnerability, which was classified as critical, has been found in sandboxie-plus Sandboxie up to 1.17.2 on Windows. This vulnerability affects unknown code of the file Sandboxie.ini of the component Background Service. This manipulation causes crlf injection.

This vulnerability appears as CVE-2026-34458. The attack requires local access. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More