PatchSiren

Profelis Information and Consulting Trade and Industry Limited Company CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Profelis Information and Consulting Trade and Industry Limited Company CVE published 2026-05-04

CVE-2026-3120

CVE-2026-3120 is an Improper Control of Generation of Code ('Code Injection') vulnerability in Profelis Information and Consulting Trade and Industry Limited Company's SambaBox, which allows for OS Command Injection. This issue affects SambaBox versions from 5.1 before 5.3. The vulnerability has a CVSS score of 7.2 and is classified as HIGH severity.