Skip to main content

EUVD-2026-16668

| CVE-2026-5027 HIGH
Path Traversal (CWE-22)
2026-03-27 vulnreport@tenable.com
Path Traversal
8.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.8 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
EUVD ID Assigned
Mar 27, 2026 - 15:22 euvd
EUVD-2026-16668
Analysis Generated
Mar 27, 2026 - 15:22 vuln.today
CVE Published
Mar 27, 2026 - 15:17 nvd
HIGH 8.8

DescriptionCVE.org

The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbitrary locations on the filesystem using path traversal sequences ('../').

AnalysisAI

Arbitrary file write vulnerability in an API endpoint (POST /api/v2/files) enables authenticated remote attackers to overwrite critical system files or place malicious executables in startup directories through unvalidated filename parameters containing path traversal sequences. The vulnerability carries a CVSS score of 8.8 (High) with network-accessible attack vector requiring low-level privileges and no user interaction. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate to API endpoint
Exploit
Send POST request to /api/v2/files with path traversal sequences in filename parameter
Execution
Write malicious file to arbitrary filesystem location
Impact
Execute arbitrary code or access sensitive data
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Requires authenticated user access to the target application. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Real-world risk is substantial based on multiple converging signals. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An authenticated attacker with low-level API access crafts a malicious file upload request to POST /api/v2/files with a filename parameter containing path traversal sequences such as '../../../etc/cron.d/malicious' or '..\..\..\Windows\System32\evil.dll'. The vulnerable endpoint processes this unsanitized input and writes the uploaded file content to the specified location outside the intended upload directory. …
Remediation Consult the Tenable Security Research advisory TRA-2026-26 at https://www.tenable.com/security/research/tra-2026-26 for vendor-specific patch availability and upgrade guidance, as no fix version has been specified in the available intelligence. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Recommended ActionAI

Within 24 hours: Identify all systems and applications exposing the affected API endpoint; restrict network access to POST /api/v2/files to trusted internal networks only and disable the endpoint if not actively required. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

EUVD-2026-16668 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy