CVE-2026-39169: SEMCMS 5
SEMCMS 5.0 is vulnerable to unauthorized access in SEMCMS_copy.php.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
HarborGuard Analysis
Synopsis
An unauthorized access vulnerability exists in SEMCMS 5.0, specifically in the SEMCMS_copy.php component. The flaw is reachable over the network without any authentication required, meaning any internet-accessible deployment is exposed. Successful exploitation gives an attacker read access to sensitive data handled by the affected endpoint, with no impact on data integrity or service availability. HarborGuard tracks this advisory and will make a patched-image rebuild available the moment an upstream fix is published.
HarborGuard Coverage
Detection for CVE-2026-39169 is available across every HarborGuard environment, with the CVE matched against images in customer registries and CI/CD pipelines within minutes of publication. Coverage extends to custom-built images that bundle SEMCMS 5.0, not just upstream base images.
AvailableHarborGuard scores this CVE at 7.5 HIGH using the published CVSS v3.1 vector and weights it against each environment's compliance policy to determine urgency and routing. Findings are delivered to the appropriate team inbox within each customer organization based on configured ownership rules.
AvailableBecause no fix version has been published upstream, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment a fix is released. In the meantime, affected images are flagged as unresolved so customers can apply compensating controls while waiting for an upstream patch.
Pending upstreamExploit Conditions
- Network reachabilityRequired
The vulnerable component is exposed over the network, so an attacker must be able to reach the service via HTTP/HTTPS from any internet-accessible vantage point.
- AuthenticationNot required
No credentials or session token of any kind are needed to trigger the unauthorized access condition.
- Victim interactionNot required
The attacker sends a direct request to the vulnerable endpoint; no user action or social engineering is required.
- Attack complexityDetail
The exploit is reliable and condition-free, with no race conditions, memory-layout dependencies, or special environmental factors required.
Blast Radius
- A successful attacker reads confidential data exposed through SEMCMS_copy.php, which may include application content, configuration values, or user records stored in the CMS.
- Confidentiality of the affected data is fully compromised (CVSS C:H); the attacker gains the same read access as a legitimate internal user of that endpoint.
- Data integrity is not affected; the attacker cannot modify or delete records through this vulnerability.
- Service availability is not affected; the application continues running normally after exploitation.
How HarborGuard Handles This
Available on HarborGuard: this CVE is flagged on every image found to include SEMCMS 5.0, with findings visible in the vulnerability dashboard and routed to the relevant team inbox. Because no upstream fix exists yet, auto-remediation cannot produce a patched rebuild at this time. HarborGuard re-checks the advisory each ingest cycle and will trigger a rebuild-and-PR flow automatically for customers with auto-remediation enabled the moment a fix version is published. While waiting for an upstream patch, compensating controls worth considering include placing the SEMCMS application behind a network policy that restricts inbound access to SEMCMS_copy.php from untrusted sources, applying egress filtering to limit lateral movement if the endpoint is compromised, and auditing what data the copy endpoint can reach to prioritize exposure.
- n/a / n/an/a
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N