CVE-2026-42547 | dfir-iris iris-web up to 2.4.27 authorization (GHSA-8hwq-v6vm-9grr)

Inserito da Angelo Barbosa | Giu 4, 2026 | CVE

A vulnerability has been found in dfir-iris iris-web up to 2.4.27 and classified as critical. Affected by this issue is some unknown functionality. This manipulation causes incorrect authorization.

This vulnerability appears as CVE-2026-42547. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-42547 | dfir-iris iris-web up to 2.4.27 authorization (GHSA-8hwq-v6vm-9grr)

Post correlati

CVE-2026-3051 | DataLinkDC dinky up to 1.2.5 Project Name GitRepository.java getProjectDir projectName path traversal

CVE-2026-6914 | MongoDB Server up to 7.0.31/8.0.20/8.1.0/8.2.6 BSON Object integer underflow

CVE-2024-37388 | lxml up to 4.9.0 XML ebookmeta.get_metadata xml external entity reference (Issue 16)

CVE-2024-40089 | Vilo Mesh WiFi System up to 5.16.1.33 Device Name command injection