VDB
GCVE-110-OSM-2026-7469
GCVE-110-OSM-2026-7469
Advisory PublishedCVSS 8.8/10
Suspected dependency confusion attack.
ENTRY
AR7/__init__.py (module-import: 5)
ADDITIONAL FINDINGS
- Brand New Package
- Binary: Shell in AR7/libpython3.1N.so: "/system/bin/sh"
- Binary: Process in AR7/libpython3.1N.so: "system($module, /, command) -- Execute the command in a subshell."
- Binary: Persistence in AR7/libpython3.1N.so: "HKEY_LOCAL_MACHINE"
PAYLOAD FILES
AR7/libpython3.1N.so
INDICATORS (IOCs)
- domains: libdl.so, libm.so, libc.so, libpython3.13.so, liblog.so (+27 more)
- binaryHashes: a4866cd17d03f679c40d855bd9efa4a1c18fb6a8c749ae749551c02d5666f4c5, 647707e53dfe53260c8d6f093b97af0cae591ef555a134f7130bac1fa43a8dcf
- payloadFileHash: 647707e53dfe53260c8d6f093b97af0cae591ef555a134f7130bac1fa43a8dcf
Weaknesses (CWE)
CWE-506Embedded Malicious Code
Risk Scores
CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| unknown | ar7 | all (affected) | — |
Browse GCVE Records
72,409 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.