ГлавнаяУязвимости → CVE-2026-23514
8.8высокая

CVE-2026-23514

Описание

Kiteworks is a private data network (PDN). Versions 9.2.0 and 9.2.1 of Kiteworks Core have an access control vulnerability that allows authenticated users to access unauthorized content. Upgrade Kiteworks Core to version 9.2.2 or later to receive a patch.

Затрагиваемое ПО
Accellion Kiteworks
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/kiteworks/security-advisories/security/advisories/GHSA-5gqr-cpr6-wvm5