CVE-2026-58459 - gpsd gpsprof Command Injection via gnuplot plot title subtype field
CVE ID :CVE-2026-58459 Published : July 9, 2026, 4:14 p.m. | 18 minutes ago Description :gpsd through release-3.27.5, fixed at commit 4c06658, contains a command injection vulnerability in gpsprof that allows attackers who control the GPS device subtype value to execute arbitrary shell...