EUVD-2026-28347

ID: EUVD-2026-28347

Severity: high

CVSS v4: 7.0 (CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N)

CVSS v3: Not provided

CWE: None listed

Source: ENISA

Description

Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to create or modify files on the docker container via path traversal.

Timestamps

Normalized: 2026-05-07T12:05:59Z UTC
Last updated: 2026-05-07T12:05:59Z UTC

References

No references provided.

VulnAI

EUVD-2026-28347

Description

Timestamps

References