CVE-2026-33623 — PinchTab is a standalone HTTP server that gives AI agents direct control over a…

/HIGH
CVE Notify vulnerabilitycveendpointmicrosoftdata-breachcloud
CVE-2026-33623 — PinchTab is a standalone HTTP server that gives AI agents direct control over a…

🚨 CVE-2026-33623 PinchTab is a standalone HTTP server that gives AI agents direct control over a Chrome browser. PinchTab `v0.8.4` contains a Windows-only command injection issue…

https://github.com/pinchtab/pinchtab/commit/25b3374bdcdf0dad32c44d5d726bf953238cd8bd

What This Means For You

  • Affects Microsoft ecosystem — check your Windows/Azure environments.
  • New vulnerability disclosed — verify if your stack is exposed.

Indicators of Compromise

IDTypeIndicator
CVE-2026-33623 Command Injection PinchTab v0.8.4, Windows-only, command injection
Source & Attribution
Source PlatformTelegram
ChannelCVE Notify
Channel ID1129491012
Message ID157420
PublishedMarch 31, 2026 at 19:26 UTC
Original Linkhttps://github.com/pinchtab/pinchtab/commit/25b3374bdcdf0...

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.

Found this interesting? Follow us on LinkedIn to stay ahead.

Follow Shimi Cohen Follow Shimi's Cyber World
Share
LinkedIn WhatsApp Reddit