CVE-2026-21537

Name of the Vulnerable Software and Affected Versions Microsoft Defender for Linux (affected versions not specified)

Description The software contains a flaw in how it generates code, potentially allowing an attacker on the same network to run code without authorization. There is no information about the number of potentially affected devices or any real-world incidents where this issue was exploited. The issue involves improper control of code generation, also known as 'code injection'.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.