What is the CVSS score of CVE-2026-41075?

CVE-2026-41075 has a CVSS 3.1 base score of 8.8 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Request Tracker are affected by CVE-2026-41075?

Request Tracker (RT) versions 5.0.0-5.0.9 and 6.0.0-6.0.2 contain a SQL injection vulnerability (CVSS 8.8) accessible to any authenticated user, enabling unauthorized database access and ticket data…

How to fix or mitigate CVE-2026-41075?

Within 24 hours: Inventory all Request Tracker deployments and identify systems running RT 5.0.0-5.0.9 or RT 6.0.0-6.0.2; assess the sensitivity of ticket data and user base. Within 7 days: Upgrade to patched versions-RT 5.0.10 for the 5.0.x track or RT 6.0.3 for the 6.0.x track. Within 30 days: Verify patches across all systems, audit database query logs for SQL injection exploitation attempts, and review access logs for unauthorized ticket reads during the vulnerability exposure window.

Request Tracker CVE-2026-41075

HIGH

SQL Injection (CWE-89)

2026-05-22 GitHub_M

SQLi

8.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Source Code Evidence Fetched

May 22, 2026 - 21:45 vuln.today

Analysis Generated

May 22, 2026 - 21:45 vuln.today

DescriptionNVD

RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.0 through 5.0.9 and 6.0.0 through 6.0.2 contain an SQL injection vulnerability. An authenticated user can craft input that is incorporated into database queries without proper validation, potentially allowing them to read or modify data in the RT database. This issue has been fixed in versions 5.0.10 and 6.0.3. If developers are unable to upgrade immediately, they can temporarily work around this issue by restricting RT account access to trusted users.

AnalysisAI

Authenticated SQL injection in Best Practical's Request Tracker (RT) ticketing system affects versions 5.0.0-5.0.9 and 6.0.0-6.0.2 via the entry_aggregator parameter in the JSON search endpoint, allowing any logged-in RT user to read or modify arbitrary data in the underlying database. The flaw was disclosed alongside the rt-5.0.10/6.0.3 release on 2026-05-20 and carries CVSS 8.8 due to high impact across confidentiality, integrity, and availability. …

RemediationAI

Within 24 hours: Inventory all Request Tracker deployments and identify systems running RT 5.0.0-5.0.9 or RT 6.0.0-6.0.2; assess the sensitivity of ticket data and user base. Within 7 days: Upgrade to patched versions-RT 5.0.10 for the 5.0.x track or RT 6.0.3 for the 6.0.x track. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-41075 vulnerability details – vuln.today

Back

Request Tracker CVE-2026-41075

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code