CVE-2026-22103

The NPC start endpoint on the web server at port 8090 is vulnerable to command injection.

Credits

Wilco van Beijnum (ElaadNL)
Jeroen van der Ham-de Vos (DIVD)

References