CyberRota
← Ana sayfaya dön

CVE-2026-46747

MEDIUM · CVSS 4.3 EPSS %0.24

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-09T10:16:44.130 · Çekilme zamanı: 2026-06-30T18:15:26.883694+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-46747
Severity
MEDIUM
CVSS
4.3
EPSS
%0.24

Orijinal NVD Açıklaması

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected application does not properly sanitize path input in the `GET /api/sftp/uploadFiles` endpoint used for directory listing. This allows path traversal through crafted input, enabling access to unintended file system locations.