HIGHCVE-2026-30804Published Modified CNA PandoraFMS
CVE-2026-30804: Unrestricted File Upload in Extension Uploader leads to Remote Code Execution
Unrestricted Upload of File with Dangerous Type vulnerability allows Remote Code Execution via file upload. This issue affects Pandora FMS: from 777 through 800
Metrics
- CVSS v4.0
- 8.6
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
Affected packages
- Pandora FMS / Pandora FMS≤ 800
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:L/SC:L/SI:L/SA:L/S:N/AU:Y/R:U/V:C/RE:M/U:AmberReferences