Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Primary rating from GitHub Advisory · only source for this CVE.
CVSS VectorGitHub Advisory
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
4DescriptionGitHub Advisory
Emissary is a P2P based data-driven workflow engine. Prior to 8.39.0, the configuration API endpoint (/api/configuration/{name}) validated configuration names using a blacklist approach that checked for \, /, .., and trailing .. This could potentially be bypassed using URL-encoded variants, double-encoding, or Unicode normalization to achieve path traversal and read configuration files outside the intended directory. This vulnerability is fixed in 8.39.0.
AnalysisAI
Emissary versions prior to 8.39.0 allow unauthenticated remote attackers to read arbitrary configuration files through path traversal via the /api/configuration/{name} endpoint. The vulnerability stems from incomplete blacklist validation of configuration names that can be bypassed using URL-encoded variants, double-encoding, or Unicode normalization attacks. No public exploit code or active exploitation has been confirmed.
Technical ContextAI
Emissary is a P2P-based data-driven workflow engine developed by the National Security Agency. The vulnerability resides in the configuration API endpoint (/api/configuration/{name}), which implements a blacklist-based validation approach to prevent path traversal attacks. This blacklist checks for literal backslashes (\), forward slashes (/), parent directory references (..), and trailing dots (..). However, blacklist-based validation is inherently weak because it fails to account for alternative encodings and normalization techniques that represent the same path traversal sequences. Attackers can bypass this protection through URL encoding (e.g., %2e%2e%2f for ../), double-encoding (e.g., %252e%252e%252f), or Unicode normalization to convert blocked characters into functionally equivalent representations that the validation logic does not recognize. This is a classic instance of CWE-22 (Improper Limitation of a Pathname to a Restricted Directory), where the application fails to properly constrain file access to the intended directory boundary.
RemediationAI
Upgrade Emissary to version 8.39.0 or later, which includes a fix that replaces the insufficient blacklist validation with proper path traversal protection. The patch is confirmed released in version 8.39.0. Users unable to upgrade immediately should implement network-level access controls to restrict access to the /api/configuration/ endpoint to trusted internal networks only, or disable the configuration API endpoint if it is not required for production operations. For detailed remediation guidance and confirmation of patch availability, consult the official GitHub security advisory at https://github.com/NationalSecurityAgency/emissary/security/advisories/GHSA-hxf2-gm22-7vcm.
Emissary is a P2P-based, data-driven workflow engine. Rated critical severity (CVSS 9.9), this vulnerability is remotely
Emissary is a P2P based data-driven workflow engine. Rated critical severity (CVSS 9.1), this vulnerability is remotely
The ConsoleAction component of U.S. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authe
The ConfigFileAction component of U.S. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low
A Cross-site scripting (XSS) vulnerability in the DocumentAction component of U.S. Rated medium severity (CVSS 6.1), thi
U.S. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch
U.S. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch
Command injection in NSA Emissary P2P workflow engine (versions prior to 8.39.0) allows authenticated remote administrat
Emissary is a distributed, peer-to-peer, data-driven workflow framework. Rated high severity (CVSS 7.2), this vulnerabil
Stored cross-site scripting in Emissary prior to 8.39.0 allows authenticated administrators to inject malicious javascri
Same weakness CWE-22 – Path Traversal
View allSame technique Path Traversal
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-19732
GHSA-hxf2-gm22-7vcm