Which versions of Detect-It-Easy are affected by CVE-2026-43616?

Detect-It-Easy versions prior to 3.21 contain a path traversal vulnerability in archive extraction that allows attackers to achieve persistent code execution by overwriting startup scripts.. A patch is available.

How to fix or mitigate CVE-2026-43616?

Within 24 hours: Inventory all Detect-It-Easy installations and identify affected versions (prior to 3.21). Within 7 days: Deploy Detect-It-Easy version 3.21 to all affected systems via patch management or direct update. Within 30 days: Conduct audit of recent archive files opened in affected environments and verify no unauthorized startup script modifications occurred; implement application whitelisting for startup script directories as compensating control for future deployments.

Detect-It-Easy CVE-2026-43616

Q: What is the CVSS score of CVE-2026-43616?

CVE-2026-43616 has a CVSS 4.0 base score of 6.8 (Medium). CVSS vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.0%.

EUVD-2026-27081 MEDIUM

Relative Path Traversal (CWE-23)

2026-05-04 VulnCheck

RCE Path Traversal

6.8

CVSS 4.0

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Scope

Lifecycle Timeline

Severity Changed

May 04, 2026 - 18:22 NVD

HIGH MEDIUM

CVSS changed

May 04, 2026 - 18:22 NVD

7.1 (HIGH) 6.8 (MEDIUM)

Source Code Evidence Fetched

May 04, 2026 - 18:02 vuln.today

Analysis Generated

May 04, 2026 - 18:02 vuln.today

Analysis Generated

May 04, 2026 - 17:45 vuln.today

Patch released

May 04, 2026 - 17:45 nvd

Patch available

CVE Published

May 04, 2026 - 17:33 nvd

MEDIUM 6.8

DescriptionNVD

Detect-It-Easy prior to 3.21 contains a path traversal vulnerability that allows attackers to write arbitrary files to the filesystem by crafting malicious archive entries with relative traversal sequences or absolute paths. Attackers can exploit insufficient path normalization during archive extraction to write files outside the intended extraction directory and achieve persistent code execution by overwriting user startup scripts.

AnalysisAI

Path traversal in Detect-It-Easy archive extraction allows local attackers to write arbitrary files outside intended directories and achieve persistent code execution by overwriting user startup scripts. Affects all versions prior to 3.21. …

RemediationAI

Within 24 hours: Inventory all Detect-It-Easy installations and identify affected versions (prior to 3.21). Within 7 days: Deploy Detect-It-Easy version 3.21 to all affected systems via patch management or direct update. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-43616 vulnerability details – vuln.today

Back

Detect-It-Easy CVE-2026-43616

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Analysis

Full analysis requires sign-in

Share

Detect-It-Easy CVE-2026-43616

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code