CVE-2026-11423

216.73.217.22

· Published 05/06/2026 21:16 · Modified 05/06/2026 21:16

Labels: CVE-2026-11423 2026-06-05 4760f414-e1ae-4ff1-bdad-c7a9c3538b79 CVE-2026-11423 CWE-22

Essential information

Published: 05/06/2026 21:16
Modified: 05/06/2026 21:16
Author: —
Creator: —
CVSS: 9.4 CRITICAL (v3) 9.4 CRITICAL (v4.0)
CISA KEV: No
CWE: —
CVSS vector: —

CVSS metrics

Description

A path traversal vulnerability exists in the Altium Enterprise Server Collaboration Service due to improper handling of user-supplied filenames in the MCAD and Simulation file download flows. A regular authenticated user can submit a collaboration message containing a crafted filename, which is later used to construct the download path on the server without validation, allowing arbitrary files to be read from the server filesystem. Because the readable files include the server's master configuration, which stores credentials for privileged accounts, exploitation can lead to authenticating as a system administrator and gaining full control of the server. Altium 365 cloud deployments are not affected.

NVD status

Status: Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 4760f414-e1ae-4ff1-bdad-c7a9c3538b79
NVD: View on NVD

Affected products (CPE)

Product	CPE
altium / altium enterprise server	`cpe:2.3:a:altium:altium_enterprise_server::::::::`