CVE-2026-8757 | adenhq hive up to 0.11.0 Delete Request routes_sessions.py _read_events_tail path traversal

Inserito da Angelo Barbosa | Mag 16, 2026 | CVE

A vulnerability was found in adenhq hive up to 0.11.0. It has been classified as critical. This affects the function _read_events_tail of the file core/framework/server/routes_sessions.py of the component Delete Request Handler. Performing a manipulation results in path traversal.

This vulnerability was named CVE-2026-8757. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-8757 | adenhq hive up to 0.11.0 Delete Request routes_sessions.py _read_events_tail path traversal

Post correlati

CVE-2024-43048 | Qualcomm Snapdragon Auto up to WSA8845H GPU Headroom API Call stack-based overflow

CVE-2022-48635 | Linux Kernel up to 5.15.70/5.19.11/6.0 fsdax fs/iomap/iter.c dax_iomap_rw infinite loop (929ef155e1da/60644dffac87/17d9c15c9b9e)

CVE-2024-41705 | Archer Platform up to 2024.04 Trusted Application Data Store cross site scripting

CVE-2025-24570 | Atarim Plugin up to 4.0.8 on WordPress cross site scripting