Vulnerabilities ›

CVE-2026-6421

High

CWE-426 — Weakness Type

                    Published: Apr 17, 2026                      ·  Modified: Apr 24, 2026                      ·  Source: NVD                

CVSS v3

7.0

🔗 NVD Official

📄 Description (English)

A vulnerability has been found in Mobatek MobaXterm Home Edition up to 26.1. This affects an unknown part in the library msimg32.dll. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The attack is considered to have high complexity. It is indicated that the exploitability is difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 26.2 is able to mitigate this issue. It is suggested to upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

🤖 AI Executive Summary

CVE-2026-6421 is a local privilege escalation vulnerability in MobaXterm Home Edition up to version 26.1 affecting the msimg32.dll library through uncontrolled search path manipulation. The vulnerability requires local access and high attack complexity but has been publicly disclosed and is exploitable.

📄 Description (Arabic)

ثغرة في مكتبة msimg32.dll بـ MobaXterm Home Edition تسمح بمعالجة مسار بحث غير محكوم، مما قد يؤدي إلى تنفيذ كود محلي. تتطلب الثغرة وصول محلي للنظام وتتمتع بتعقيد هجوم عالي. تم إصدار إصلاح في الإصدار 26.2.

🤖 ملخص تنفيذي (AI)

هذا الثغرة في MobaXterm Home Edition الإصدار 26.1 وما قبله تؤثر على مكتبة msimg32.dll من خلال مسار بحث غير محكوم. تتطلب الثغرة وصول محلي وتعقيد هجوم عالي لكنها تم الكشف عنها علنا.

🤖 AI Intelligence Analysis Analyzed: May 10, 2026 10:19

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: medium

🏢 Affected Saudi Sectors

government telecom banking

🎯 MITRE ATT&CK Techniques

T1574.001 T1547.001

⚖️ Saudi Risk Score (AI)

7.0

/ 10.0

🔧 Remediation Steps (English)

Upgrade MobaXterm Home Edition to version 26.2 or later immediately. Restrict local user access to systems running vulnerable versions. Implement application whitelisting and monitor for suspicious DLL loading activities.

🔧 خطوات المعالجة (العربية)

قم بترقية MobaXterm Home Edition إلى الإصدار 26.2 أو أحدث فوراً. قيد وصول المستخدمين المحليين للأنظمة التي تشغل الإصدارات الضعيفة. طبق قائمة التطبيقات المسموحة ومراقبة أنشطة تحميل DLL المريبة.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.11.2.1 A.12.6.1

🔵 SAMA CSF

ID.AM-2 PR.IP-1

🟡 ISO 27001:2022

A.12.2.1 A.14.2.1

🔗 References & Sources 6

🔗

https://download.mobatek.net/2622026032581854/MobaXterm_Installer_v26.2.zip

cna@vuldb.com

🔗

https://drive.google.com/file/d/17bbNDzfoD3NNPlUMkSYs8bVzVbbwddnU/view

cna@vuldb.com

🔗

https://mobaxterm.mobatek.net/download-home-edition.html

cna@vuldb.com

🔗

https://vuldb.com/submit/778851

cna@vuldb.com

🔗

https://vuldb.com/vuln/358020

cna@vuldb.com

🔗

https://vuldb.com/vuln/358020/cti

cna@vuldb.com

📊 CVSS Score

7.0

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack VectorL — Low / Local

Attack ComplexityH — High

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityH — High

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.0

CWECWE-426

EPSS0.01%

Exploit No

Patch ✗ No

Published 2026-04-17

Source Feed nvd

🇸🇦 Saudi Risk Score

7.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-426

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-6421

💬 Comments

Introduce Yourself

Sign In Required