Ctrl + K
/ news / CVE
CVEPublished 2026-01-122 articles on news6 live referencesNVD data

CVE-2026-22812

Vulnerability data via CVEDB (Shodan)

CVSS v3.1
8.8
HIGH
EPSS percentile
97
Exploit Prediction Scoring System · top 3% of all CVEs
Description

OpenCode is an open source AI coding agent. Prior to 1.0.216, OpenCode automatically starts an unauthenticated HTTP server that allows any local process (or any website via permissive CORS) to execute arbitrary shell commands with the user's privileges. This vulnerability is fixed in 1.0.216.

Timeline
Published 2026-01-12

External references

NVDMITREExploit-DBSploitustrickest/cveVulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag0 hosts
vuln:CVE-2026-22812
Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product + version
product:"Anoma Opencode" version:"0.0.1"
Version-pinned fingerprint from NVD's first vulnerable CPE.
Shodan · banner/body mention
http.html:"Opencode"
HTTP body or banner mentions "Opencode" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2026-22812
Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2026-22812
Censys host search filtered to this CVE id.
grep.app
CVE-2026-22812
Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2026-22812
GitHub code search for direct mentions.
Google dork
"CVE-2026-22812" exploit -site:nvd.nist.gov
Write-ups and news, NVD excluded.

Known PoCs on GitHub (8)

CVE-2026-228128 repos
Threekiii/Awesome-POCJava
一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.
★ 5,047·updated 1mo ago
Threekiii/CVEunknown
一个 CVE 漏洞预警知识库,无 exp/poc,部分包含修复方案。A knowledge base of CVE security vulnerability, no PoCs/exploits.
★ 172·updated 2d ago
DarkFunct/TK-CVE-RepoPython
TK-CVE-Repo
★ 51·updated 2w ago
rohmatariow/CVE-2026-22812-exploitPython
★ 33·updated 5mo ago
J1ezds/Vulnerability-Wiki-pageHTML
这是一个每天同步Vulnerability-Wiki中docs-base中内容的项目
★ 14·updated 1mo ago
barrersoftware/opencode-secureTypeScript
Security-hardened fork of OpenCode - Fixes CVE-2026-22812 (CVSS 8.8 RCE) that upstream refuses to patch
★ 5·updated 5mo ago
0xgh057r3c0n/CVE-2026-22812Python
OpenCode < v1.0.216 - Unauthenticated RCE
★ 2·updated 5mo ago
Udyz/CVE-2026-22812-ExpPython
CVE-2026-22812 - OpenCode Unauth RCE
★ 1·updated 5mo ago
Articles on news mentioning CVE-2026-22812