CVSS 8.0 HIGH
Vulnerability
CVE-2026-49832: DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN
Overview Remote Code Execution (RCE) is possible via Velocity Templates used by DSpace for [COAR Notify/LDN messages](https://wiki.lyrasis.org/spaces/DSDOC9x/pages/379126679/COAR+Notify). _This vulnerability impacts DSp…
🎯 Known Indicators of Compromise
{"type":"url","value":"https://wiki.lyrasis.org/spaces/DSDOC9x/pages/379126679/COAR+Notify).","confidence_score":0.82,"first_seen":"2026-07-08","source_count":1}
{"type":"url","value":"https://github.com/DSpace/DSpace/security/advisories/GHSA-9qm4-rh6w-pq5x)","confidence_score":0.82,"first_seen":"2026-07-08","source_count":1}
{"type":"url","value":"https://github.com/DSpace/DSpace/security/advisories/GHSA-9qm4-rh6w-pq5x),","confidence_score":0.82,"first_seen":"2026-07-08","source_count":1}
{"type":"domain","value":"wiki.lyrasis.org","confidence_score":0.75,"first_seen":"2026-07-08","source_count":1}
⚡ DETECTION RULES AVAILABLE
Get CVE-2026-49832 Detection Pack
Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.
✓ Sigma Rules
✓ YARA Pack
✓ IOC Table
✓ SIEM Queries
🛡️ Get Detection Pack →
🔌 Access via API →