What is the CVSS score of CVE-2026-30869?

CVE-2026-30869 has a CVSS 3.1 base score of 9.3 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L. EPSS exploitation probability: 0.4%.

Which versions of Siyuan are affected by CVE-2026-30869?

A critical path traversal vulnerability in SiYuan knowledge management system (versions ≤3.5.10) could allow attackers to access, modify, or exfiltrate sensitive organizational data stored within the…. A patch is available.

How to fix or mitigate CVE-2026-30869?

Within 24 hours: Identify all SiYuan instances and versions in use across the organization; isolate affected systems from production networks if business operations permit. Within 7 days: Implement network segmentation to restrict SiYuan access to authorized users only; deploy WAF rules to block path traversal patterns; disable any non-essential SiYuan features. Within 30 days: Migrate critical data to patched versions or alternative solutions; monitor vendor channels for patch availability and apply immediately upon release.

Siyuan CVE-2026-30869

CRITICAL

Path Traversal (CWE-22)

2026-03-10 security-advisories@github.com

GHSA-2h2p-mvfx-868w

RCE Path Traversal Siyuan Suse

9.3

CVSS 3.1 · GitHub Advisory

Severity by source

GitHub Advisory PRIMARY

9.3 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L

SUSE

CRITICAL

qualitative

Primary rating from GitHub Advisory.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

None

Availability

Low

Lifecycle Timeline

Patch released

Mar 31, 2026 - 21:13 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

CVE Published

Mar 10, 2026 - 17:40 nvd

CRITICAL 9.3

DescriptionGitHub Advisory

SiYuan is a personal knowledge management system. Prior to 3.5.10, a path traversal vulnerability in the /export endpoint allows an attacker to read arbitrary files from the server filesystem. By exploiting double‑encoded traversal sequences, an attacker can access sensitive files such as conf/conf.json, which contains secrets including the API token, cookie signing key, and workspace access authentication code. Leaking these secrets may enable administrative access to the SiYuan kernel API, and in certain deployment scenarios could potentially be chained into remote code execution (RCE). This vulnerability is fixed in 3.5.10.

AnalysisAI

SiYuan prior to 3.5.10 has a path traversal vulnerability enabling arbitrary file access through crafted API requests.

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Craft double-encoded path traversal payload

Delivery

Send malicious request to /export endpoint

Exploit

Access conf/conf.json file

Execution

Extract API token and secrets

Impact

Authenticate as administrator

Access

Craft double-encoded path traversal payload

Delivery

Send malicious request to /export endpoint

Exploit

Access conf/conf.json file

Execution

Extract API token and secrets

Impact

Authenticate as administrator

Vulnerability AssessmentAI

Exploitation	SiYuan versions prior to 3.5.10 with unauthenticated access to /export endpoint. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	CVSS 9.3 — SiYuan continues to have file system access vulnerabilities. Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker uses path traversal to read sensitive files from the SiYuan server.
Remediation	Update to 3.5.10+. Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all SiYuan instances and versions in use across the organization; isolate affected systems from production networks if business operations permit. …

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

SUSE

Severity: Critical

CVE-2026-30869 vulnerability details – vuln.today

Back

Siyuan CVE-2026-30869

Severity by source

CVSS VectorGitHub Advisory

Lifecycle Timeline

DescriptionGitHub Advisory

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

Vendor StatusVendor

SUSE

Share

External POC / Exploit Code