Arbitrary Code Execution in Lumiverse AI Chat Application by Prolix OC
CVE-2026-44450

9.9CRITICAL

Key Information:

Vendor: Prolix-oc
Status: Lumiverse
Vendor: CVE Published:; 26 May 2026

What is CVE-2026-44450?

Lumiverse, an AI chat application developed by Prolix OC, contains a vulnerability that allows users to execute arbitrary OS-level code. Prior to version 0.9.7, the MCP server creation endpoint improperly handles the command field by validating it against an allowlist of binary names, yet it forwards the args array to the child process without validation. This oversight permits any logged-in user to exploit the system by executing inline code using specific flags in supported binaries. The server listens on all interfaces, and a simple host-header rebinding attack, achievable through HTTP requests, can be executed by any machine with network access to the server, allowing unauthorized command execution on the Lumiverse server.

Affected Version(s)

Lumiverse < 0.9.7

References

https://github.com/prolix-oc/Lumiverse/security/advisorie...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-44450 Data

JSON

Prolix-oc

What is CVE-2026-44450?

Affected Version(s)

References

CVSS V3.1

Timeline