Raynet · Rvia · CVE-2026-38945
**Name of the Vulnerable Software and Affected Versions**
Raynet rvia versions prior to 12.6 Update 8
**Description**
Command injection occurs when the software performs a Java search using the `find` command. An adversary can execute arbitrary Java code by providing a crafted path that matches improperly terminated search criteria.
**Recommendations**
Update to a version later than 12.6 Update 8.