PT-2026-21264 · Owl Opds · Owl Opds
Published
2026-02-20
·
Updated
2026-02-20
·
CVE-2026-26097
CVSS v4.0
8.4
High
| Vector | AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Owl opds version 2.2.0.4
Description
An uncontrolled search path element exists in Owl opds 2.2.0.4. This allows leveraging or manipulating configuration file search paths through a crafted network request.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Owl Opds