HomeCVE Intelligence › CVE-2026-49832
CVSS 8.0 HIGH Vulnerability

CVE-2026-49832: DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDN

Overview Remote Code Execution (RCE) is possible via Velocity Templates used by DSpace for [COAR Notify/LDN messages](https://wiki.lyrasis.org/spaces/DSDOC9x/pages/379126679/COAR+Notify). _This vulnerability impacts DSp…

8.0CVSS Score
HIGHSeverity
NOCISA KEV
VulnerabilityImpact Type

📋 Vulnerability Details

CVE IDCVE-2026-49832
Vendormaven
Affected Productorg.dspace:dspace-api
Vulnerability TypeVulnerability
CVSS Score8.0 (HIGH)
Actively Exploited❌ No known exploitation
Patch StatusSee Vendor Advisory →
Reported ByCYBERDUDEBIVASH SENTINEL APEX Intelligence (via github_advisories)

🔬 Technical Analysis

#

Overview Remote Code Execution (RCE) is possible via Velocity Templates used by DSpace for [COAR Notify/LDN messages](https://wiki.lyrasis.org/spaces/DSDOC9x/pages/379126679/COAR+Notify). _This vulnerability impacts DSpace versions 8.0 <= 8.3, 9.0 <= 9.2._ The attacker MUST already have DSpace administrator credentials in order to perform the attack. This attack is related to the path traversal attack identified in [GHSA-9qm4-rh6w-pq5x](https://github.com/DSpace/DSpace/security/advisories/GHSA-9qm4-rh6w-pq5x) as it was the impactful part of the "proof-of-concept" attack chain.

Impact When chained with the LDN Path Traversal Attack identified in [GHSA-9qm4-rh6w-pq5x](https://github.com/DSpace/DSpace/security/advisories/GHSA-9qm4-rh6w-pq5x), it may be possible to execute Java directly

🎯 Known Indicators of Compromise

{"type":"url","value":"https://wiki.lyrasis.org/spaces/DSDOC9x/pages/379126679/COAR+Notify).","confidence_score":0.82,"first_seen":"2026-07-08","source_count":1} {"type":"url","value":"https://github.com/DSpace/DSpace/security/advisories/GHSA-9qm4-rh6w-pq5x)","confidence_score":0.82,"first_seen":"2026-07-08","source_count":1} {"type":"url","value":"https://github.com/DSpace/DSpace/security/advisories/GHSA-9qm4-rh6w-pq5x),","confidence_score":0.82,"first_seen":"2026-07-08","source_count":1} {"type":"domain","value":"wiki.lyrasis.org","confidence_score":0.75,"first_seen":"2026-07-08","source_count":1}

📚 Advisory References

⚡ DETECTION RULES AVAILABLE

Get CVE-2026-49832 Detection Pack

Sigma rules, YARA signatures, IOC table, and SIEM queries for Splunk, Elastic, Sentinel, and Chronicle — deployable in 5 minutes.

✓ Sigma Rules ✓ YARA Pack ✓ IOC Table ✓ SIEM Queries
🛡️ Get Detection Pack → 🔌 Access via API →

🔗 Related Intelligence