CVE-2026-30352 | leonvanzyl autocoder 79d02a Command /devserver/start privilege escalation

VDB-359834 · CVE-2026-30352 · GCVE-0-2026-30352 LEONVANZYL AUTOCODER 79D02A COMMAND /DEVSERVER/START PRIVILEGE ESCALATION HISTORYDIFFRELATEJSONXMLCTI CVSS Meta Temp Score Current Exploit Price (≈) CTI Interest Score 6.1 $0-$5k 0.49+ Summaryinfo A vulnerability was found in leonvanzyl autocoder 79d02a. It has been declared as critical. This affects an unknown part of the file /devserver/start of the component Command Handler. Such manipulation leads to Remote Privilege Escalation. This vulnerability is traded as CVE-2026-30352. The attack may be launched remotely. There is no exploit available. Detailsinfo A vulnerability was found in leonvanzyl autocoder 79d02a and classified as critical. Affected by this issue is some unknown processing of the file /devserver/start of the component Command Handler. The manipulation with an unknown input leads to a remote privilege escalation vulnerability. Impacted is confidentiality, integrity, and availability. CVE summarizes: A remote code execution (RCE) vulnerability in the /devserver/start endpoint of leonvanzyl autocoder commit 79d02a allows attackers to execute arbitrary code via providing a crafted command parameter. This vulnerability is handled as CVE-2026-30352 since 03/04/2026. The exploitation is known to be easy. The attack may be launched remotely. Technical details are known, but there is no available exploit. The structure of the vulnerability defines a possible price range of USD $0-$5k at the moment (estimation calculated on 04/27/2026). There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product. Productinfo Vendor leonvanzyl Name autocoder Version 79d02a CPE 2.3info 🔒 CPE 2.2info 🔒 CVSSv4info VulDB Vector: 🔒 VulDB Reliability: 🔍 CVSSv3info VulDB Meta Base Score: 6.3 VulDB Meta Temp Score: 6.1 VulDB Base Score: 6.3 VulDB Temp Score: 6.1 VulDB Vector: 🔒 VulDB Reliability: 🔍 CVSSv2info Vector Complexity Authentication Confidentiality Integrity Availability Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock Unlock VulDB Base Score: 🔒 VulDB Temp Score: 🔒 VulDB Reliability: 🔍 Exploitinginfo Class: Privilege escalation CWE: Unknown CAPEC: 🔒 ATT&CK: 🔒 Physical: No Local: No Remote: Yes Availability: 🔒 Status: Not defined Price Prediction: 🔍 Current Price Estimation: 🔒 0-Day Unlock Unlock Unlock Unlock Today Unlock Unlock Unlock Unlock Threat Intelligenceinfo Interest: 🔍 Active Actors: 🔍 Active APT Groups: 🔍 Countermeasuresinfo Recommended: no mitigation known Status: 🔍 0-Day Time: 🔒 Timelineinfo 03/04/2026 CVE reserved 04/27/2026 +53 days Advisory disclosed 04/27/2026 +0 days VulDB entry created 04/27/2026 +0 days VulDB entry last update Sourcesinfo Status: Not defined CVE: CVE-2026-30352 (🔒) GCVE (CVE): GCVE-0-2026-30352 GCVE (VulDB): GCVE-100-359834 Entryinfo Created: 04/27/2026 17:51 Changes: 04/27/2026 17:51 (51) Complete: 🔍 Cache ID: 99:805:101 Discussion No comments yet. Languages: en. Please log in to comment. ◂ PreviousOverviewNext ▸