Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
OpenFOAM 2506 simulation file can run malicious code
CVE-2025-61982
Summary
A malicious OpenFOAM simulation file can be used to run unauthorized code on a system. This can allow an attacker to take control of the system. Users should update to the latest version of OpenFOAM to fix this issue.
Original title
An arbitrary code execution vulnerability exists in the Code Stream directive functionality of OpenCFD OpenFOAM 2506. A specially crafted OpenFOAM simulation file can lead to arbitrary code executi...
Original description
An arbitrary code execution vulnerability exists in the Code Stream directive functionality of OpenCFD OpenFOAM 2506. A specially crafted OpenFOAM simulation file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
nvd CVSS3.1
7.8
Vulnerability type
CWE-94
Code Injection
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026