CVE-2026-7852
published 2026-06-11CVE-2026-7852: Unrestricted upload of file with dangerous type vulnerability in Limatek System Inc. LimRAD NAC allows Remote Code Inclusion. This issue affects LimRAD NAC…
PriorityP264critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.36%
27.7th percentile
Unrestricted upload of file with dangerous type vulnerability in Limatek System Inc. LimRAD NAC allows Remote Code Inclusion.
This issue affects LimRAD NAC: before 5.5.7.3.9.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| limatek_system_inc | limrad_nac | < 5.5.7.3.9 | 5.5.7.3.9 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Unrestricted upload of file with dangerous type vulnerability in Limatek System Inc.
ghsa_unreviewed·2026-06-11
CVE-2026-7852 [CRITICAL] CWE-434 Unrestricted upload of file with dangerous type vulnerability in Limatek System Inc.
Unrestricted upload of file with dangerous type vulnerability in Limatek System Inc. LimRAD NAC allows Remote Code Inclusion.
This issue affects LimRAD NAC: before 5.5.7.3.9.
VulDB
Limatek LimRAD NAC prior 5.5.7.3.9 unrestricted upload (EUVD-2026-36237)
vuldb·2026-06-11·CVSS 9.8
CVE-2026-7852 [CRITICAL] Limatek LimRAD NAC prior 5.5.7.3.9 unrestricted upload (EUVD-2026-36237)
A vulnerability described as critical has been identified in Limatek LimRAD NAC. Affected by this issue is some unknown functionality. Such manipulation leads to unrestricted upload.
This vulnerability is uniquely identified as CVE-2026-7852. The attack can be launched remotely. No exploit exists.
Upgrading the affected component is recommended.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-11
Published