HIGHCVE-2026-22876Published 2026-01-16Modified 2026-01-16CNA jpcert

CVE-2026-22876: Path Traversal vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation

Path Traversal vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA Corporation. If this vulnerability is exploited, arbitrary files on the affected product may be retrieved by a logged-in user with the low("monitoring user") or higher privilege.

CVSS v4.0: 7.1
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

TOA Corporation / Multiple Network Cameras TRIFORA 3 series
see the information provided by the vendor

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

References

toa-products.com
jvn.jp

Metrics