PT-2026-27781 · Kiteworks · Kiteworks

Published

2026-03-25

Updated

2026-03-26

CVE-2026-23514

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Kiteworks versions 9.2.0 through 9.2.1

Description Kiteworks Core has an access control issue that permits authenticated users to access content they are not authorized to view. The software is a private data network (PDN).

Recommendations Upgrade Kiteworks Core to version 9.2.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-282

Related Identifiers

CVE-2026-23514

Affected Products

Kiteworks

PT-2026-27781 · Kiteworks · Kiteworks

CVE-2026-23514

Weakness Enumeration

Related Identifiers

Affected Products

References · 6