PatchSiren

hoppscotch CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH hoppscotch CVE published 2026-07-09

CVE-2026-59721

The CVE-2026-59721 record was published on 2026-07-09T18:16:57.200Z. Hoppscotch, an open source API development ecosystem, has a vulnerability in its updateInfraConfigs GraphQL mutation that allows an attacker to execute arbitrary commands as root in the backend container. This issue is fixed in version 2026.6.0. The NVD entry for this CVE is currently Deferred.