CVE-2026-2328

HIGH

An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their intended scope via path traversal, resulting in exposure of sensitive information.

CVSS v3.1 Score

7.5
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector
NETWORK
Complexity
LOW
Privileges
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
NONE
Availability
NONE
Published: 3/30/2026Modified: 3/30/2026

Related Intelligence (1)

HIGHVulnerability

NVD HIGH: CVE-2026-2328 — An unauthenticated remote attacker can exploit insufficient input validation to ...

An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their intended scope via path traversal, resulting in exposure of sensitive information.

CVE-2026-2328
NIST NVD

References (1)

https://certvde.com/de/advisories/VDE-2026-010