Skip to main content

CVE-2026-48617

| EUVDEUVD-2026-37914 LOW
Improper Access Control (CWE-284)
1.8
CVSS 3.0 · Vendor

Severity by source

Vendor (CNA) PRIMARY
1.8 LOW
AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N

Primary rating from Vendor (CNA) · only source for this CVE.

CVSS VectorVendor

CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N
Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Jun 18, 2026 - 04:37 github-releases
UNKNOWN (no severity yet)

Description PRE-NVD

Disclosed via GitHub release of nodejs/node. NVD scoring and full description are pending.

Analysis Pending

This CVE was just disclosed and hasn’t been processed by NVD yet. Full analysis – including CVSS score, severity rating, and remediation guidance – will appear here once NVD publishes it.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-48617 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy