CVE-2026-4147

Name of the Vulnerable Software and Affected Versions versions prior to 2026-4147

Description An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command. This can occur through invocations of the filemd5 command that are specifically designed to trigger the issue. The vulnerability involves reading uninitialized stack memory, which could potentially expose sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.