CVE-2026-27897 | WanderingAstronomer Vociferous up to 4.4.1 src/api/system.py export_file path traversal

Inserito da Angelo Barbosa | Mar 11, 2026 | CVE

A vulnerability marked as critical has been reported in WanderingAstronomer Vociferous up to 4.4.1. This issue affects the function export_file of the file src/api/system.py. This manipulation causes path traversal.

This vulnerability is handled as CVE-2026-27897. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-27897 | WanderingAstronomer Vociferous up to 4.4.1 src/api/system.py export_file path traversal

Post correlati

CVE-2021-47214 | Linux Kernel up to /5.15.4 userfaultfd hugetlb_mcopy_atomic_pte Privilege Escalation (b5069d44e2fb/cc30042df6fc)

CVE-2025-7343 | Digiwin SFT up to 3.7.12 sql injection

CVE-2021-1462 | Cisco Catalyst SD-WAN Manager up to 20.1.12 CLI Local Privilege Escalation (cisco-sa-sdwan-privesc-vman-kth3c82B)

CVE-2025-10855 | Solvera Teknoera up to 01102025 authorization