HIGHCVE-2026-9157Published Modified CNA FSI
CVE-2026-9157: Remote Code Execution in Gmission Web FAX
Improper input validation, Unrestricted upload of file with dangerous type vulnerability in Gmission Web Fax allows Remote Code Inclusion. This issue affects Web Fax: from 3.0 before 3.1.
Metrics
- CVSS v4.0
- 8.6
- Severity
- HIGH
- Fixed in
- 3.1
- Affected Products
- 1
Fix available
3.1
Affected packages
- Gmission / Web Fax< 3.1 (from 3.0)
CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NReferences