VulnerabilityBleeping Computer
6.3 — HIGH
Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining
Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy cryptominers on developers' servers. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
Hackers exploited two authentication bypass vulnerabilities in Qinglong task scheduler, deploying cryptominers on developers' servers since February 7, with the root cause being a mismatch between middleware authorization logic and Express.js routing behavior.
⚙️Technical Details
CVEs
CVE-2026-3965CVE-2026-4047Affected Systems: Qinglong task schedulerAttack Vectors: NETWORK
Affected Systems
Qinglong task scheduler
Attack Vectors
NETWORK
💥Impact Assessment
Severity: MEDIUM
Who Is at Risk
Chinese developers using Qinglong task scheduler
🛡️Recommended Actions
1Update to the latest version of Qinglong (version 2.20.2 or later)
2Block command injection patterns in config.sh
3Implement additional security measures, such as web application firewalls and intrusion detection systems
📦Affected Products
Qinglong task scheduler
🔐NVD Verified DataVERIFIED
CVE-2026-3965 ↗CVSS 6.3 — MEDIUM
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LWeaknesses
CWE-693
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.