What is GHSA-9fxh-m9vh-qmrq?

GHSA-9fxh-m9vh-qmrq is a security advisory published by GitHub Security Advisories with High severity. An issue in SMSGate sms-core\u003c=2.1.13.6 allows a remote attacker to execute arbitrary code via the...

Which CVE IDs does GHSA-9fxh-m9vh-qmrq cover?

GHSA-9fxh-m9vh-qmrq covers the following CVE IDs: CVE-2026-37579. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-9fxh-m9vh-qmrq?

GHSA-9fxh-m9vh-qmrq has a CVSS v3 base score of 7.3, published by GitHub Security Advisories.

GHSA-9fxh-m9vh-qmrqHighCVSS 7.3

An issue in SMSGate sms-core<=2.1.13.6 allows a remote attacker to execute arbitrary code via the...

Vendor

GitHub Security Advisories

Published

May 28, 2026

Last Modified

May 29, 2026

🔗 CVE IDs covered (1)

CVE-2026-37579 →

📋 Description

An issue in SMSGate sms-core<=2.1.13.6 allows a remote attacker to execute arbitrary code via the Cmpp7FDeliverRequestMessageCodec.java component

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2026-37579
https://github.com/wudijun/jun.github.io/blob/main/SMSGate%20deserialization%20vulnerability.md
https://github.com/advisories/GHSA-9fxh-m9vh-qmrq