CVE-2026-26097

High CVSS: 8.4

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via a crafted network request.

Vendor

Product

CWE

Yayın Tarihi

2026-02-20 17:25:54

Güncelleme

2026-02-27 17:06:35

Source Identifier

prodsec@nozominetworks.com

KEV Date Added

CWE-427 Opds-talon HIGH Owlcyberdefense 2026

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2026-26097

Critical

CVE-2026-2333

Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds 2.2.0.4 allows Command I…

High

CVE-2026-26102

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network…

High

CVE-2026-26095

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network…

High

CVE-2026-26096

Incorrect Permission Assignment for Critical Resource in Owl opds 2.2.0.4 allows File Manipulation via a crafted network…

High

CVE-2026-26098

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via…

High

CVE-2026-26099

Uncontrolled Search Path Element in Owl opds 2.2.0.4 allows Leveraging/Manipulating Configuration File Search Paths via…