CVE-2026-44604
A flaw in RPM's archive extraction tool allows an attacker to run arbitrary commands on a system by crafting a malicious archive with shell metacharacters embedded in its folder name. When a user extracts such an archive using the rpmuncompress utility, the unsanitized folder name is passed directly into a shell command, enabling code execution with the privileges of the extracting user. The vulnerability affects ZIP, 7z, and GEM archive formats.
Source data · NVD / CISA · public domain
- CVSS
- 3.1 · 7.0 HIGH · CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
- Weaknesses (CWE)
- CWE-78
- Affected products
- 0 configuration(s)
- Published / Modified
- 2026-05-28 / 2026-06-23
NVD description (verbatim)
A command injection vulnerability was discovered in the `rpmuncompress` utility of RPM. When extracting certain archive formats (ZIP, 7z, GEM) to a specified destination directory, the tool inserts the archive's top-level folder name into a shell command without properly sanitizing it. A specially crafted archive containing shell metacharacters in its folder name can execute arbitrary commands as the user running the extraction.
3 reference(s) · View on NVD →
SEC.co analysis · AI-assisted, reviewed against source
Technical summary
CVE-2026-44604 is a command injection vulnerability (CWE-78) in RPM's rpmuncompress utility. The tool constructs shell commands that incorporate the top-level directory name from archive files without proper input validation or escaping. When processing ZIP, 7z, or GEM archives, an attacker can craft a specially formatted archive whose folder name contains shell metacharacters (e.g., backticks, dollar signs, semicolons) that break out of the intended command context and execute arbitrary shell code. The vulnerability requires local access and user interaction—specifically, the user must manually extract the attacker-supplied archive—but once triggered, execution occurs with the user's full privileges.
Business impact
This vulnerability creates a supply chain and user interaction risk. Organizations distributing or consuming packaged software via RPM archives face exposure if archives pass through systems using rpmuncompress. An attacker could embed malicious code into a seemingly legitimate archive; any user extracting it would unknowingly execute the payload. For development teams, build systems, or package maintainers routinely extracting archives, this represents a path to unauthorized code execution and potential lateral movement. The impact is amplified in automated or CI/CD contexts where a compromised archive could bootstrap persistent access or data exfiltration.
Affected systems
The vulnerability affects RPM package management systems that include the rpmuncompress utility. Linux distributions relying on RPM (RHEL, Fedora, openSUSE, etc.) and any systems with RPM installed are in scope. The flaw manifests specifically during extraction of ZIP, 7z, and GEM archive formats to a user-specified destination. Systems where users routinely extract archives from untrusted or semi-trusted sources—particularly development workstations and CI/CD infrastructure—face elevated risk.
Exploitability
Exploitation requires two conditions: (1) an attacker must supply or control a specially crafted archive, and (2) a user must extract it using rpmuncompress. The attack cannot be executed remotely or without user action, which lowers opportunistic attack volume. However, the barrier to crafting a malicious archive is trivial—creating a ZIP or 7z file with a shell metacharacter in the folder name requires no special tools. Social engineering (disguising the archive as legitimate software, patches, or data) is the likely attack vector. Once extraction occurs, the attacker gains code execution in the user's security context, potentially including system-level privileges if the extracting user is root or has sudo access.
Remediation
Apply a patch from your RPM vendor that sanitizes or properly escapes folder names before passing them to shell commands. Alternatively, use archive extraction methods that avoid shell command construction entirely. Organizations should verify patch availability from their Linux distribution vendor and deploy it to affected systems. Until patching is complete, restrict user permissions for archive extraction and implement controls limiting which sources users can extract archives from.
Patch guidance
Check your Linux distribution's security advisory for CVE-2026-44604. RHEL, Fedora, openSUSE, and other RPM-based distributions will release patches on their respective timelines. Verify against the vendor advisory for specific patch version numbers and update procedures. Apply patches to all systems running rpmuncompress, with particular urgency for build systems, development machines, and any infrastructure that processes external or untrusted archives. Test patches in a non-production environment before broad deployment.
Detection guidance
Monitor for extraction of archives with unusual characters in folder names—particularly those containing backticks, dollar signs, semicolons, pipes, or other shell metacharacters. Log calls to rpmuncompress and capture archive metadata. Look for unexpected child process spawning from extraction operations, which may indicate command injection. In automated environments, implement archive integrity checking and validate folder names against a whitelist of acceptable patterns. Network monitoring can also detect suspicious outbound connections or data exfiltration following archive extraction events.
Why prioritize this
While the attack requires user interaction and local access, the ease of payload creation, the prevalence of RPM-based systems, and the severity of the outcome (arbitrary code execution) warrant prompt remediation. Development teams, package maintainers, and build infrastructure should prioritize patching. Systems where archive extraction is routine and sources are less tightly controlled should be addressed first. The CVSS 3.1 score of 7.0 (HIGH) reflects the confluence of high integrity and confidentiality impact against the mitigating factors of attack complexity and user interaction.
Risk score, explained
The CVSS 3.1 score of 7.0 is driven by high impact across confidentiality, integrity, and availability (C:H/I:H/A:H), reflecting the potential for complete system compromise through arbitrary code execution. The score is moderated by attack vector restriction to local access (AV:L) and higher attack complexity (AC:H), which account for the requirement to craft a malicious archive and the user interaction needed to trigger extraction (UI:R). The resulting score places this in the HIGH severity category, appropriate for a flaw that can lead to privilege escalation or data compromise but requires deliberate attacker preparation and user action.
Frequently asked questions
Can this vulnerability be exploited remotely without user involvement?
No. The vulnerability requires (1) local system access to place or supply an archive, and (2) a user to manually extract it using rpmuncompress. There is no remote exploitation vector and user interaction is mandatory.
What file types are vulnerable?
Only ZIP, 7z, and GEM archive formats are affected by this vulnerability in rpmuncompress. Other archive formats processed by different utilities are out of scope.
If I extract archives only from trusted sources, am I safe?
If all archives originate from truly trusted, verified sources (e.g., cryptographically signed official releases), risk is low. However, in practice, supply chain compromises, source compromises, or accidental misclassification of a source can introduce untrusted archives. Patching remains the safest approach for any system where users extract archives regularly.
What should I do immediately while waiting for patches?
Restrict permissions for rpmuncompress to specific trusted users, implement manual review of archive contents before extraction, and educate users to avoid extracting archives from untrusted or unexpected sources. If your distribution has released a patch, prioritize deployment. Monitor extraction activity and look for anomalous process spawning or outbound connections following archive operations.
This analysis is provided for informational purposes and represents a snapshot as of the published date. Patch availability, vendor advisories, and exploitation status may change. Verify all patch version numbers, KEV status, and specific vendor guidance against official security advisories from your distribution or vendor before taking action. The information provided does not constitute legal or compliance advice. Organizations should assess this vulnerability against their specific systems, risk tolerance, and security policies. No exploit code or weaponized proof-of-concept is provided herein. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).
Weaknesses (CWE)
Browse
Related vulnerabilities
- CVE-2025-41265HIGH
CVE-2025-41265: Waterfall WF-500 TX Host OS Command Injection (CVSS 7.2)
- CVE-2025-41266HIGH
CVE-2025-41266: Waterfall WF-500 TX Host Command Injection Vulnerability Analysis
- CVE-2025-41267HIGH
CVE-2025-41267: Waterfall WF-500 TX Host Command Injection Vulnerability
- CVE-2025-41279HIGH
CVE-2025-41279: OS Command Injection in Waterfall WF-500 RX Host Administration WebUI
- CVE-2025-41281HIGH
CVE-2025-41281: Waterfall WF-500 OS Command Injection | HIGH Severity
- CVE-2025-69755HIGH
CVE-2025-69755: Neterbit NW-431F Router RCE and Data Exposure Vulnerability
- CVE-2026-10214HIGH
CVE-2026-10214: Command Injection in chatgpt-on-wechat Bash Tool
- CVE-2026-10219HIGH
CVE-2026-10219: GoClaw Command Injection Vulnerability | Remote Code Execution