CVE-2026-54371 | acl up to 2.5.x Pathname link following

Inserito da Angelo Barbosa | Giu 29, 2026 | CVE

A vulnerability classified as critical has been found in acl up to 2.5.x. This impacts an unknown function of the component Pathname. Performing a manipulation results in link following.

This vulnerability is known as CVE-2026-54371. Attacking locally is a requirement. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-54371 | acl up to 2.5.x Pathname link following

Post correlati

CVE-2024-41713 | Mitel MiCollab up to 9.8.1.201 NuPoint Unified Messaging path traversal (misa-2024-0029)

CVE-2024-53149 | Linux Kernel up to 6.11.10/6.12.1 glink pmic_glink_ucsi_connector_status off-by-one

CVE-2025-11630 | RainyGao DocSys up to 2.02.36 File Upload /Doc/uploadDoc.do updateRealDoc path path traversal

CVE-2024-39949 | Dahua NVR4XXX Data Packet denial of service