Is Command Injection affected by CVE-2026-22317?

A critical vulnerability in the Root CA certificate transfer workflow allows attackers with elevated system access to execute arbitrary commands with root privileges on affected devices.

CVE-2026-22317

EUVD-2026-12786 HIGH

2026-03-18 CERTVDE

7.2

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 18, 2026 - 08:00 euvd

EUVD-2026-12786

Analysis Generated

Mar 18, 2026 - 08:00 vuln.today

CVE Published

Mar 18, 2026 - 07:33 nvd

HIGH 7.2

Tags

Command Injection Fl Switch 2316 Pn Fl Switch 2005 Fl Switch Tsn 2316 Fl Switch 2206 2fx Sm Fl Switch 2212 2tc 2sfx Fl Switch 2708 Fl Switch Tsn 2312 2gc 2sfp Fl Switch 2308 Fl Nat 2304 2gc 2sfp Fl Switch 2207 Fx Sm Fl Switch 2708 Pn Fl Switch 2016 Fl Switch 2414 2sfx Pn Fl Switch 2008 Fl Switch Tsn 2314 2sfp Fl Switch 2508 Fl Switch 2214 2fx Fl Switch 2316 Fl Switch 2206 2fx St Fl Switch 2516 Fl Switch 2416 Pn Fl Switch 2306 2sfp Fl Switch 2207 Fx Fl Switch 2404 2tc 2sfx Fl Switch 5924sfp 4gc Fl Switch 2206 2fx Fl Switch 2303 8sp1 Fl Switch 2416 Fl Switch 2506 2sfp Pn Fl Switch 2204 2tc 2sfx Fl Nat 2008 Fl Switch 2208 Pn Fl Switch 2208 Fl Switch 2208c Fl Switch 2504 2gc 2sfp Fl Switch 2308 Pn Fl Switch 2406 2sfx Fl Switch 2108 Fl Switch 2105 Fl Switch 2214 2sfx Fl Switch 2512 2gc 2sfp Fl Switch 5924 4gc Fl Switch 2312 2gc 2sfp Fl Nat 2208 Fl Switch 2408 Pn Fl Switch 2205 Fl Switch 2314 2sfp Pn Fl Switch 2214 2sfx Pn Fl Switch 2216 Fl Switch 2516 Pn Fl Switch 2008f Fl Switch 2608 Fl Switch 2514 2sfp Pn Fl Switch 2514 2sfp Fl Switch 2116 Fl Switch 2608 Pn Fl Switch 2214 2fx Sm Fl Switch 2406 2sfx Pn Fl Switch 2508 Pn Fl Switch 2206 2fx Sm St Fl Switch 2412 2tc 2sfx Fl Switch 2216 Pn Fl Switch 2414 2sfx Fl Switch 2206 2sfx Fl Switch 2408 Fl Switch 2506 2sfp Fl Switch 2306 2sfp Pn Fl Switch 2206c 2fx Fl Switch 2314 2sfp Fl Switch 2206 2sfx Pn Fl Switch 2304 2gc 2sfp

Description

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges.

Analysis

Arbitrary command execution with root privileges affects multiple Fl Switch and Fl Nat devices through improper handling of HTTP POST requests in the Root CA certificate transfer workflow. An authenticated high-privileged attacker can exploit this command injection flaw to execute arbitrary commands on the underlying Linux operating system. …

Remediation

Within 24 hours: Identify all affected devices in your environment and assess which systems have high-privileged user accounts that could exploit this vulnerability. Within 7 days: Implement network segmentation to restrict access to the Root CA certificate transfer functionality and deploy WAF rules to block suspicious POST requests to vulnerable endpoints. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.1

CVSS: +36

POC: 0

CVE-2026-22317 vulnerability details – vuln.today

Back

CVE-2026-22317

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code