How is CVE-2026-49492 exploited?

Network reachability (required): The attacker must deliver the crafted markdown document to the victim over the network, such as via a hosted file, email attachment, or shared repository. Authentication (not-required): No account or credentials on the target system are required; the attacker only needs the victim to open a malicious document. Victim interaction (required): The victim must actively open or preview the crafted markdown document, making this a social-engineering vector that requires user action to trigger. Attack complexity (info): The exploit is reliable and condition-free once the victim previews the document; no race conditions or special memory layout are needed.

What is the impact of CVE-2026-49492?

Attacker executes arbitrary OS commands in the context of the user running the markdown preview, gaining full read access to files and secrets accessible by that user. Attacker can write, modify, or delete files on the host, including configuration files, credentials, and source code. Attacker can crash or disrupt the preview process and any dependent services running under the same user context.

Back to search

HIGHCVE-2026-49492Published 2026-06-05Modified 2026-06-05CNA VulnCheck

CVE-2026-49492: Markdown Preview Enhanced OS Command Injection in External File and Link Opening

Markdown Preview Enhanced before 0.8.28 opens external files and links from the preview through a shell and does not validate untrusted inputs taken from the markdown document - the diagram filename attribute, imported file paths, and the latex_engine code-chunk attribute. On Windows, a crafted markdown document can inject operating system commands that execute when the document is previewed. Fixed in 0.8.28 by passing these inputs as literal arguments instead of through a shell and validating them before use.

CVSS v4.0: 8.6
Severity: HIGH
Fixed in: 0.8.28
Affected Products: 1

HarborGuard Analysis

Synopsis

OS command injection in Markdown Preview Enhanced (versions before 0.8.28) allows a crafted markdown document to execute arbitrary operating system commands on Windows when the document is previewed. The vulnerability is reachable over the network in the sense that a victim can receive or download a malicious markdown file, and no authentication is required from the attacker's side. Successful exploitation gives the attacker full read access, write access, and the ability to crash or disrupt the host process running the preview. A patched-image rebuild at version 0.8.28 is available on HarborGuard for affected environments.

HarborGuard Coverage

Detection

Detection of CVE-2026-49492 is available across every HarborGuard environment, with the CVE matched against customer images within minutes of ingestion from upstream advisory feeds, including custom-built images that bundle Markdown Preview Enhanced. Coverage extends to both direct dependencies and transitive inclusions of the affected package.

Available

Triage

HarborGuard is capable of scoring this CVE at CVSS 8.6 HIGH and weighting it against each customer environment's compliance policy to determine escalation priority. Triage routing to the appropriate team inbox within each customer org is available as part of the standard pipeline.

Available

Patch

A patched-image rebuild at version 0.8.28 is available on HarborGuard for any environment found running an affected version of Markdown Preview Enhanced. For customers who opt into auto-remediation, HarborGuard can perform the rebuild, run a regression test suite against the updated image, and open a pull request against affected workloads.

Available

Exploit Conditions

Network reachabilityRequired
The attacker must deliver the crafted markdown document to the victim over the network, such as via a hosted file, email attachment, or shared repository.
AuthenticationNot required
No account or credentials on the target system are required; the attacker only needs the victim to open a malicious document.
Victim interactionRequired
The victim must actively open or preview the crafted markdown document, making this a social-engineering vector that requires user action to trigger.
Attack complexityDetail
The exploit is reliable and condition-free once the victim previews the document; no race conditions or special memory layout are needed.

Blast Radius

Attacker executes arbitrary OS commands in the context of the user running the markdown preview, gaining full read access to files and secrets accessible by that user.
Attacker can write, modify, or delete files on the host, including configuration files, credentials, and source code.
Attacker can crash or disrupt the preview process and any dependent services running under the same user context.

How HarborGuard Handles This

Available on HarborGuard: detection for CVE-2026-49492 is active across the ingestion pipeline and matches any image containing Markdown Preview Enhanced below version 0.8.28 within minutes of scan. A patched-image rebuild at 0.8.28 is available for affected environments; the fix replaces shell-interpolated argument passing with literal argument passing and adds input validation for diagram filename attributes, imported file paths, and the latex_engine code-chunk attribute. For customers who opt into auto-remediation, HarborGuard can rebuild the affected image, run regression tests, and open a PR against impacted workloads. For environments where compliance policy requires manual approval, the rebuilt image is staged and flagged for review. Median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes for environments with auto-remediation enabled.

See how HarborGuard automates this

Fix available

0.8.28

Affected packages

shd101wyy / Markdown Preview Enhanced
< 0.8.28 (from 0)

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

Metrics

Get notified

HarborGuard Analysis

Synopsis

HarborGuard Coverage

Exploit Conditions

Blast Radius

How HarborGuard Handles This

Fix available