PT-2026-29299 · Undefined · Undefined

Published

2026-03-31

Updated

2026-03-31

CVE-2026-30278

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

An arbitrary file overwrite vulnerability in FLY is FUN Aviation Navigation v35.33 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2026-30278

Affected Products

Undefined

PT-2026-29299 · Undefined · Undefined

CVE-2026-30278

Weakness Enumeration

Related Identifiers

Affected Products

References · 4