Offensive Sequence
⚠️ CRITICAL: CVE-2026-4851 affects CASIANO GRID::Machine (≤0.127). Malicious remote hosts can trigger client-side RCE via unsafe eval() deserialization. Only connect to trusted hosts & review code paths. Details: https://radar.offseq.com/threat/cve-2026-4851-cwe-502-deserialization-of-untrusted-4ee6eb90 #OffSeq #CVE20264851 #Perl #Security
Mar 29 at 1:30amWeb
Show threadOriel Jutty 16h ago

@offseq

CRITICAL: CVE-2026-4851 affects CASIANO GRID::Machine

... which is abandonware last updated in 2011.

Show threadManni14h ago
@barubary @offseq Plus: "The vulnerability is by design". Indeed. The purpose of this thing is to run code on a remote system.
Show threadOriel Jutty 14h ago
@confuseacat @offseq Yeah, but it's intended to run code on remote servers and send back results. The vulnerability is that a malicious remote server can send back "data" that runs arbitrary code on the client/management system.