SUSE Cockpit Security Update Important Remote Command Execution 2019
Source: Linuxsecurity
Published:
<p>## This update for cockpit fixes the following issues * CVE-2026-0775: npm: loading of modules from an unsecured location can be used for local privilege escalation and arbitrary code execution in the context of a target user (bsc#1256521). * CVE-2026-4802: remote command execution via unsanitize