CVE-2026-40515
published 2026-04-17CVE-2026-40515: OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path…
PriorityP427medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
EPSS
0.23%
13.8th percentile
OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not properly evaluated against configured path rules, allowing disclosure of sensitive local file content, key material, configuration files, or directory contents despite configured path restrictions.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hkuds | openharness | < bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae | bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae |
| hkuds | openharness | < 2026-04-11 | 2026-04-11 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
nvdv4.08.7HIGHCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9gpm-2v37-f3mp: OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete pa
ghsa_unreviewed·2026-04-17
CVE-2026-40515 [HIGH] CWE-863 GHSA-9gpm-2v37-f3mp: OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete pa
OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not properly evaluated against configured path rules, allowing disclosure of sensitive local file content, key material, configuration files, or directory contents despite configured path restrictions.
VulDB
HKUDS OpenHarness Path Normalization authorization (EUVD-2026-23450)
vuldb·2026-04-17·CVSS 8.7
CVE-2026-40515 [HIGH] HKUDS OpenHarness Path Normalization authorization (EUVD-2026-23450)
A vulnerability was found in HKUDS OpenHarness. It has been declared as problematic. Affected by this issue is some unknown functionality of the component Path Normalization Handler. Executing a manipulation can lead to incorrect authorization.
The identification of this vulnerability is CVE-2026-40515. The attack may be launched remotely. There is no exploit available.
It is advisable to implement a patch to correct this issue.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-17
Published