Rollup

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-27606 CRITICAL POC PATCH Act Now

Path traversal in Rollup JavaScript module bundler before 2.80.0/3.30.0/4.59.0 allows reading arbitrary files on the build server during bundling. PoC and patch available.

RCE Path Traversal Rollup Redhat Suse
NVD GitHub
CVSS 3.1
9.8
EPSS
0.6%
CVE-2026-27606
EPSS 1% CVSS 9.8
CRITICAL POC PATCH Act Now

Path traversal in Rollup JavaScript module bundler before 2.80.0/3.30.0/4.59.0 allows reading arbitrary files on the build server during bundling. PoC and patch available.

RCE Path Traversal Rollup +2
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy