Description

NetExec is a network execution tool. Prior to version 1.5.1, the module spider_plus improperly creates the output file and folder path when saving files from SMB shares. It does not take into account that it is possible for Linux SMB shares to have path traversal characters such as `../` in them. An attacker can craft a filename in an SMB share that includes these characters, which when spider_plus crawls and downloads, can write or overwrite arbitrary files. The issue is patched in v1.5.1. As a workaround, do not run spider_plus with DOWNLOAD=true against targets.

INFO

Published Date :

2026-02-26T00:39:15.832Z

Last Modified :

2026-02-26T16:18:09.879Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-27884 vulnerability.

Vendors Products
Pennyw0rth
  • Netexec
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-27884.

URL Resource
https://github.com/Pennyw0rth/NetExec/commit/7d027f2774d0520b322d60f9c99b9ab3edb4035e cve-icon cve-icon
https://github.com/Pennyw0rth/NetExec/issues/1120 cve-icon cve-icon
https://github.com/Pennyw0rth/NetExec/pull/1121 cve-icon cve-icon
https://github.com/Pennyw0rth/NetExec/security/advisories/GHSA-fccr-6qm2-7h27 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact