CVE-2026-52780 - CERT CVE
ID CVE-2026-52780
Sažetak OpenProject is open-source, web-based project management software. Prior to 17.3.3 and 17.4.1, cache store poisoning leads to Remote Code Execution (RCE). This vulnerability is fixed in 17.3.3 and 17.4.1.
Reference
CVSS
Base: 9.6
Impact: 6.0
Exploitability:2.8
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Zadnje važnije ažuriranje 26-06-2026 - 20:20
Objavljeno 26-06-2026 - 20:17