GHSA-8hm4-jmvc-cfg9

Опубликовано: 24 фев. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 7.4

CVSS3: 8.1

Описание

A vulnerability exists in REB500 for an authenticated user with Installer role to access and alter the contents of directories that the role is not authorized to do so.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2026-2459
https://publisher.hitachienergy.com/preview?DocumentID=8DBD000217&LanguageCode=en&DocumentPartId=&Action=Launch

EPSS

Процентиль: 3%

0.00015

Низкий

7.4 High

CVSS4

8.1 High

CVSS3

CVE ID

CVE-2026-2459

Дефекты

CWE-267

Связанные уязвимости

CVE-2026-2459

CVSS3: 8.1

nvd

4 месяца назад

A vulnerability exists in REB500 for an authenticated user with Installer role to access and alter the contents of directories that the role is not authorized to do so.

EPSS

Процентиль: 3%

0.00015

Низкий

7.4 High

CVSS4

8.1 High

CVSS3

CVE ID

CVE-2026-2459

Дефекты

CWE-267