CVE-2026-33486

{"id": "CVE-2026-33486", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 4.0, "exploitabilityScore": 2.3}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2026-03-26T18:16:29.903", "references": [{"url": "https://github.com/roadiz/core-bundle-dev-app/commit/7904f690a51b88b1c72c02149ebdf85fa81f19f2", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/roadiz/core-bundle-dev-app/security/advisories/GHSA-rc55-58f4-687g", "tags": ["Exploit", "Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-918"}]}], "descriptions": [{"lang": "en", "value": "Roadiz is a polymorphic content management system based on a node system that can handle many types of services. A vulnerability in roadiz/documents prior to versions 2.7.9, 2.6.28, 2.5.44, and 2.3.42 allows an authenticated attacker to read any file on the server's local file system that the web server process has access to, including highly sensitive environment variables, database credentials, and internal configuration files. Versions 2.7.9, 2.6.28, 2.5.44, and 2.3.42 contain a patch."}, {"lang": "es", "value": "Roadiz es un sistema de gesti\u00f3n de contenido polim\u00f3rfico basado en un sistema de nodos que puede manejar muchos tipos de servicios. Una vulnerabilidad en roadiz/documents anterior a las versiones 2.7.9, 2.6.28, 2.5.44 y 2.3.42 permite a un atacante autenticado leer cualquier archivo en el sistema de archivos local del servidor al que el proceso del servidor web tiene acceso, incluyendo variables de entorno altamente sensibles, credenciales de base de datos y archivos de configuraci\u00f3n internos. Las versiones 2.7.9, 2.6.28, 2.5.44 y 2.3.42 contienen un parche."}], "lastModified": "2026-03-31T21:13:52.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:roadiz:core-bundle-dev-app:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B54B795E-2244-402F-80D7-B2AE64ADB6FC", "versionEndExcluding": "2.3.42"}, {"criteria": "cpe:2.3:a:roadiz:core-bundle-dev-app:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "797A6BCB-ACEE-49D0-A3F5-8D67FEE92A94", "versionEndExcluding": "2.5.44", "versionStartIncluding": "2.4.0"}, {"criteria": "cpe:2.3:a:roadiz:core-bundle-dev-app:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2541EE20-EDA5-434A-A201-9979927BA219", "versionEndExcluding": "2.6.28", "versionStartIncluding": "2.6.0"}, {"criteria": "cpe:2.3:a:roadiz:core-bundle-dev-app:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C506359-4F7E-47A5-9A30-39948ABEAA5C", "versionEndExcluding": "2.7.9", "versionStartIncluding": "2.7.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}