A critical vulnerability (CVE-2026-4802, CVSS 8.0 HIGH) in Cockpit allows arbitrary command execution via crafted links in the system logs user interface. The article indicates affected systems are those running Cockpit on Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions, but specific software version ranges are not provided. The advisory provides updated packages, such as cockpit-264.3-1.el9_0, to remediate the issue.
Red Hat Product Errata RHSA-2026:21395 - Security Advisory Issued: 2026-05-27 Updated: 2026-05-27 RHSA-2026:21395 - Security Advisory Overview Updated Packages Synopsis Important: cockpit security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for cockpit is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more. Security Fix(es): cockpit: Cockpit: Arbitrary command execution via crafted links in system logs UI (CVE-2026-4802) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 s390x Fixes BZ - 2451155 - CVE-2026-4802 cockpit: Cockpit: Arbitrary command execution via crafted links in system logs UI CVEs CVE-2026-4802 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 SRPM cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98 ppc64le cockpit-264.3-1.el9_0.ppc64le.rpm SHA-256: 1bd20f5cae5326bda90f7c730dbc2ab5edc92bbc9ef73e098373cdaedbdeb760 cockpit-bridge-264.3-1.el9_0.ppc64le.rpm SHA-256: 3ad7173bff57277d576edf802c5fed4f4bee8cc215a1bd8a7390570e9ee0b817 cockpit-debuginfo-264.3-1.el9_0.ppc64le.rpm SHA-256: d4b3636c414c1c7525df5761f8284776b944a78ae0204504af385c657fc4c78e cockpit-debuginfo-264.3-1.el9_0.ppc64le.rpm SHA-256: d4b3636c414c1c7525df5761f8284776b944a78ae0204504af385c657fc4c78e cockpit-debugsource-264.3-1.el9_0.ppc64le.rpm SHA-256: 788a74ff61714d3a2a4dc627a96c9efd77fb07d42d3e35778be3716b84878eeb cockpit-debugsource-264.3-1.el9_0.ppc64le.rpm SHA-256: 788a74ff61714d3a2a4dc627a96c9efd77fb07d42d3e35778be3716b84878eeb cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83 cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe cockpit-pcp-264.3-1.el9_0.ppc64le.rpm SHA-256: bc8c0c597a1817f7e322eda50839db569fcf1091c6219d463168da01f345564e cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244 cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850 cockpit-ws-264.3-1.el9_0.ppc64le.rpm SHA-256: 3fd13d5b165804ac24842257be0320d1192392817cfba8bc7d8b6612d65c54eb Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 SRPM cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98 x86_64 cockpit-264.3-1.el9_0.x86_64.rpm SHA-256: 5bb488c7a988e162e57f6eb9d03a3d241d56b47367340643c42e184d542e14fd cockpit-bridge-264.3-1.el9_0.x86_64.rpm SHA-256: 3bb8ac41f2087ce862f3cd9164f7ff64c2437e5e0a003bf19553d935bc63a74e cockpit-debuginfo-264.3-1.el9_0.x86_64.rpm SHA-256: b055dcbf653d7df0ce3325e4acffa6675cfe1c1067ddcb647095323e478fdff0 cockpit-debuginfo-264.3-1.el9_0.x86_64.rpm SHA-256: b055dcbf653d7df0ce3325e4acffa6675cfe1c1067ddcb647095323e478fdff0 cockpit-debugsource-264.3-1.el9_0.x86_64.rpm SHA-256: e9fc4efe376baa70559151211a9ea7cf963b607edc054c7141b19f6388d6f306 cockpit-debugsource-264.3-1.el9_0.x86_64.rpm SHA-256: e9fc4efe376baa70559151211a9ea7cf963b607edc054c7141b19f6388d6f306 cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83 cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe cockpit-pcp-264.3-1.el9_0.x86_64.rpm SHA-256: 3b8d9349a7afaf39fce54a1400917cf49ac068a8823c8cc7c8c8616f5a2739d2 cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244 cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850 cockpit-ws-264.3-1.el9_0.x86_64.rpm SHA-256: 8d16eccce2471783202b8c082d50800fbf4bb7fc97baeacf248ba4822d55f4a7 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.0 SRPM cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98 aarch64 cockpit-264.3-1.el9_0.aarch64.rpm SHA-256: d3538efaf848404d92cb041da0acd3522b2a409d029bc48385f54b1b6efeb22b cockpit-bridge-264.3-1.el9_0.aarch64.rpm SHA-256: 9c2c35a651ae294aaec59aeb891b0656fc6a8c73718fbc9485b7f7be6baa7668 cockpit-debuginfo-264.3-1.el9_0.aarch64.rpm SHA-256: 8dcb974e6618df1b66e4810f8c1c383d073b88cb8f06d3d14f18061347a192f2 cockpit-debuginfo-264.3-1.el9_0.aarch64.rpm SHA-256: 8dcb974e6618df1b66e4810f8c1c383d073b88cb8f06d3d14f18061347a192f2 cockpit-debugsource-264.3-1.el9_0.aarch64.rpm SHA-256: f04fc45e33888c406cbda6b668593cd923777428bb5994157a555615142feb3a cockpit-debugsource-264.3-1.el9_0.aarch64.rpm SHA-256: f04fc45e33888c406cbda6b668593cd923777428bb5994157a555615142feb3a cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83 cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe cockpit-pcp-264.3-1.el9_0.aarch64.rpm SHA-256: e632ee6b32a59c64b2c3a35faab7424a7614c7ae17443e83200aa99450913d8a cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244 cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850 cockpit-ws-264.3-1.el9_0.aarch64.rpm SHA-256: 0ca92b71690a73342c755c98936d4bd3ae0ca2eb7952507444e309d42044f129 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.0 SRPM cockpit-264.3-1.el9_0.src.rpm SHA-256: d8982ecc49112abe349b97ee60906952d14beaad8baf7dc3353f6e43ec831e98 s390x cockpit-264.3-1.el9_0.s390x.rpm SHA-256: beb0132d644e4f9c469d8d83df216836e36fd0cca34232c7f7a4fb62448f26d3 cockpit-bridge-264.3-1.el9_0.s390x.rpm SHA-256: 76dced7925ec5405aa58f048ef29465148464a0063de3e35ef32693a34cb3a4b cockpit-debuginfo-264.3-1.el9_0.s390x.rpm SHA-256: f8566eb382ba8eaa3cf27434f3a707f23fc46ecc0010efb18db95aca31628aa1 cockpit-debuginfo-264.3-1.el9_0.s390x.rpm SHA-256: f8566eb382ba8eaa3cf27434f3a707f23fc46ecc0010efb18db95aca31628aa1 cockpit-debugsource-264.3-1.el9_0.s390x.rpm SHA-256: c0c6e01268fb08e0970202bf59de3a1308532f34a8f2677723eb980a3266f14f cockpit-debugsource-264.3-1.el9_0.s390x.rpm SHA-256: c0c6e01268fb08e0970202bf59de3a1308532f34a8f2677723eb980a3266f14f cockpit-doc-264.3-1.el9_0.noarch.rpm SHA-256: b6739deec5a61c4fadf89083262a424e0e42444f0237a0d4d062042577e62c83 cockpit-packagekit-264.3-1.el9_0.noarch.rpm SHA-256: fa0fbea70813882d33126f42d09697482590c0114d51ac1c1747b5755ae3ecfe cockpit-pcp-264.3-1.el9_0.s390x.rpm SHA-256: 1984e4bd8b4af7d36dab8d3136b9428f8e6e63804a2c8227317cde31f013dbda cockpit-storaged-264.3-1.el9_0.noarch.rpm SHA-256: 7fb160d2f6f08d3be844aacf18f9b4e31a5c0633ad8d202d791c1da5d7cf7244 cockpit-system-264.3-1.el9_0.noarch.rpm SHA-256: 5a3036e68be4372791de566bf02a03802c7ed5b633cc04ba3106ecf07ae48850 cockpit-ws-264.3-1.el9_0.s390x.rpm SHA-256: 867ed984848ddbd600839f1f955d4f792313b9930be765f1df3f4718a036b711 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .