Cyreneadmin

2 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-2693 MEDIUM POC This Month

Cyreneadmin versions up to 1.3.0. contains a vulnerability that allows attackers to improper authorization (CVSS 4.3).

Information Disclosure Cyreneadmin
NVD VulDB
CVSS 3.1
4.3
EPSS
0.0%
CVE-2026-2692 MEDIUM POC This Month

Path traversal in CyreneAdmin's image handler endpoint allows authenticated attackers to read arbitrary files on the server through manipulation of the Avatar parameter. The vulnerability affects versions up to 1.3.0 and requires valid user credentials to exploit, limiting the attack surface to authenticated users. Public exploit code exists and no patch is currently available.

Path Traversal Cyreneadmin
NVD VulDB
CVSS 3.1
4.3
EPSS
0.1%
CVE-2026-2693
EPSS 0% CVSS 4.3
MEDIUM POC This Month

Cyreneadmin versions up to 1.3.0. contains a vulnerability that allows attackers to improper authorization (CVSS 4.3).

Information Disclosure Cyreneadmin
NVD VulDB
CVE-2026-2692
EPSS 0% CVSS 4.3
MEDIUM POC This Month

Path traversal in CyreneAdmin's image handler endpoint allows authenticated attackers to read arbitrary files on the server through manipulation of the Avatar parameter. The vulnerability affects versions up to 1.3.0 and requires valid user credentials to exploit, limiting the attack surface to authenticated users. Public exploit code exists and no patch is currently available.

Path Traversal Cyreneadmin
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy