CVE-2026-21620
published 2026-02-20CVE-2026-21620: Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp_file…
PriorityP417low2.3CVSS 4.0
AVNACLATPPRLUINVCLVILVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.46%
36.6th percentile
Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp_file modules), erlang otp tftp (tftp_file modules) allows Relative Path Traversal. This vulnerability is associated with program files lib/tftp/src/tftp_file.erl, src/tftp_file.erl.
This issue affects otp: from 17.0, from 07b8f441ca711f9812fad9e9115bab3c3aa92f79; otp: from 5.10 before 7.0; otp: from 1.0.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | erlang | < erlang 1:27.3.4.8+dfsg-1 (forky) | erlang 1:27.3.4.8+dfsg-1 (forky) |
| erlang | otp | >= 07b8f441ca711f9812fad9e9115bab3c3aa92f79 < * | * |
| erlang | otp | >= 1.0 < * | * |
| erlang | otp | >= 17.0 < * | * |
| erlang | otp | >= 5.10 < 7.0 | 7.0 |
| msrc | azl3_erlang_26.2.5.15-1_on_azure_linux_3.0 | — | — |
| msrc | cbl2_erlang_25.3.2.21-4_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_erlang_25.3.2.21-5_on_cbl_mariner_2.0 | — | — |
CVSS provenance
nvdv4.02.3LOWCVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv2.3LOW
vendor_debian2.3LOW
vendor_msrc2.3LOW
vendor_redhat2.3LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
erlang: Erlang OTP tftp_file modules: Information disclosure via relative path traversal
vendor_redhat·2026-02-20·CVSS 2.3
CVE-2026-21620 [LOW] CWE-22 erlang: Erlang OTP tftp_file modules: Information disclosure via relative path traversal
erlang: Erlang OTP tftp_file modules: Information disclosure via relative path traversal
Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp_file modules), erlang otp tftp (tftp_file modules) allows Relative Path Traversal. This vulnerability is associated with program files lib/tftp/src/tftp_file.erl, src/tftp_file.erl.
This issue affects otp: from 17.0, from 07b8f441ca711f9812fad9e9115bab3c3aa92f79; otp: from 5.10 before 7.0; otp: from 1.0.
A flaw was found in Erlang OTP tftp_file modules. This vulnerability allows an attacker to exploit a weakness in how file paths are handled, known as Relative Path Traversal. By manipulating these paths, an attacker could gain unauthorized access to se
Microsoft
TFTP Path Traversal
vendor_msrc·2026-02-10·CVSS 2.3
CVE-2026-21620 [LOW] CWE-23 TFTP Path Traversal
TFTP Path Traversal
Mariner: Mariner
EEF: EEF
Customer Action Required: Yes
Remediation: CBL-Mariner Releases
Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade
Debian
CVE-2026-21620: erlang - Relative Path Traversal, Improper Isolation or Compartmentalization vulnerabilit...
vendor_debian·2026·CVSS 2.3
CVE-2026-21620 [LOW] CVE-2026-21620: erlang - Relative Path Traversal, Improper Isolation or Compartmentalization vulnerabilit...
Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp_file modules), erlang otp tftp (tftp_file modules) allows Relative Path Traversal. This vulnerability is associated with program files lib/tftp/src/tftp_file.erl, src/tftp_file.erl. This issue affects otp: from 17.0, from 07b8f441ca711f9812fad9e9115bab3c3aa92f79; otp: from 5.10 before 7.0; otp: from 1.0.
Scope: local
bookworm: open
bullseye: open
forky: resolved (fixed in 1:27.3.4.8+dfsg-1)
sid: resolved (fixed in 1:27.3.4.8+dfsg-1)
trixie: open
OSV
CVE-2026-21620: Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp
osv·2026-02-20·CVSS 2.3
CVE-2026-21620 [LOW] CVE-2026-21620: Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp
Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp_file modules), erlang otp tftp (tftp_file modules) allows Relative Path Traversal. This vulnerability is associated with program files lib/tftp/src/tftp_file.erl, src/tftp_file.erl. This issue affects otp: from 17.0, from 07b8f441ca711f9812fad9e9115bab3c3aa92f79; otp: from 5.10 before 7.0; otp: from 1.0.
No detection rules found.
No public exploits indexed.
Wiz
CVE-2026-32144 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.6
CVE-2026-32144 [HIGH] CVE-2026-32144 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-32144 :
Erlang OTP vulnerability analysis and mitigation
Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP designated-responder authorization bypass via missing signature verification.
The OCSP response validation in public_key:pkix_ocsp_validate/5 does not verify that a CA-designated responder certificate was cryptographically signed by the issuing CA. Instead, it only checks that the responder certificate's issuer name matches the CA's subject name and that the certificate has the OCSPSigning extended key usage. An attacker who can intercept or control OCSP responses can create a self-signed certificate with a matching issuer name and the OCSPSigning EKU, and use it to forge OCSP responses that mark revoked certificates
Wiz
CVE-2026-21620 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 2.3
CVE-2026-21620 [LOW] CVE-2026-21620 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-21620 :
CBL Mariner vulnerability analysis and mitigation
Relative Path Traversal, Improper Isolation or Compartmentalization vulnerability in erlang otp erlang/otp (tftp_file modules), erlang otp inets (tftp_file modules), erlang otp tftp (tftp_file modules) allows Relative Path Traversal. This vulnerability is associated with program files lib/tftp/src/tftp_file.erl, src/tftp_file.erl.
This issue affects otp: from 17.0, from 07b8f441ca711f9812fad9e9115bab3c3aa92f79; otp: from 5.10 before 7.0; otp: from 1.0.
Source : NVD
## 2.3
Score
Published February 20, 2026
Severity LOW
CNA Score 2.3
Affected Technologies
CBL Mariner
Erlang OTP
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentil
https://cna.erlef.org/cves/CVE-2026-21620.htmlhttps://github.com/erlang/otp/commit/3970738f687325138eb75f798054fa8960ac354ehttps://github.com/erlang/otp/commit/655fb95725ba2fb811740b57e106873833824344https://github.com/erlang/otp/commit/696fdec922661d4a3cc528fc34bc24fae8d4ad8ahttps://github.com/erlang/otp/pull/10706https://github.com/erlang/otp/security/advisories/GHSA-hmrc-prh3-rpvphttps://osv.dev/vulnerability/EEF-CVE-2026-21620https://www.erlang.org/doc/system/versions.html#order-of-versions
2026-02-20
Published