PT-2026-29736 · Progress · Sharefile Storagezones Controller
Piotr Bazydlo
·
Published
2026-04-02
·
Updated
2026-04-02
·
CVE-2026-2701
CVSS v3.1
9.1
Critical
| AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
Authenticated user can upload a malicious file to the server and execute it, which leads to remote code execution.
Fix
Unrestricted File Upload
OS Command Injection
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sharefile Storagezones Controller