Published: April 21, 2026 | Last Modified: April 21, 2026
NewSoftOA developed by NewSoft has an OS Command Injection vulnerability, allowing unauthenticated local attackers to inject arbitrary OS commands and execute them on the server.
Exploitation Probability (EPSS): Moderate — 6.34% (91th percentile)
Measurable exploitation probability. Should be patched in the normal vulnerability management cycle.
This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.