XWEB Pro 1.12.1 and prior allows hackers to execute system commands

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

8.8

XWEB Pro 1.12.1 and prior allows hackers to execute system commands

CVE-2026-23702

Summary

An attacker with a valid login can exploit a security weakness in XWEB Pro to execute unauthorized system commands, potentially gaining control of the system. This is a serious threat that can lead to data theft, disruption, or complete system takeover. Update to the latest version of XWEB Pro to fix this issue.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
copeland	xweb_300d_pro_firmware	<= 1.12.1	–
copeland	xweb_500d_pro_firmware	<= 1.12.1	–
copeland	xweb_500b_pro_firmware	<= 1.12.1	–

Original title

An OS command injection vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an authenticated attacker to achieve remote code execution on the system by sending malicious input in...

Original description

An OS command injection
vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling an
authenticated attacker to achieve remote code execution on the system by
sending malicious input injected into the server username field of the
import preconfiguration action in the API V1 route.

nvd CVSS3.1 8.8

Vulnerability type

CWE-78 OS Command Injection

https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-05... Third Party Advisory
https://webapps.copeland.com/Dixell/Pages/SystemSoftwareUpdate Product
https://www.cisa.gov/news-events/ics-advisories/icsa-26-057-10 Third Party Advisory US Government Resource

Published: 27 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026