CVE-2026-30352

· NIST NVD ↗

A remote code execution (RCE) vulnerability in the /devserver/start endpoint of leonvanzyl autocoder commit 79d02a allows attackers to execute arbitrary code via providing a crafted command parameter.

CRITICAL
CVSS severity
9.8
CVSS base score
2026-04-27
Published

CWE codes

CWE-77

Sources