PT-2026-52123 · Aten · Unizon
Published
2026-06-24
·
Updated
2026-06-24
·
CVE-2026-9776
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
ATEN Unizon (affected versions not specified)
Description
A directory traversal flaw exists in the
writeFileToHttpServletResponse() function. The issue is caused by insufficient validation of a user-supplied path before it is used in file operations, allowing remote attackers to disclose sensitive information in the context of SYSTEM without requiring authentication.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Unizon