CVE-2026-29201 - CERT CVE

  1. CVE-2026-29201

ID CVE-2026-29201
Sažetak Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` AdminBin call can cause arbitrary file read when a relative file path is passed.
Reference
CVSS
Base: 4.3
Impact: 1.4
Exploitability:2.8
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW NONE NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Zadnje važnije ažuriranje 11-05-2026 - 23:19
Objavljeno 08-05-2026 - 19:16