Auth bypass in Avid Nexis E-series

CVE-2024-26291

An Unauthenticated Arbitrary File Read vulnerability affects the Agent when installed on a system. The parameter filename does not validate the path thus allowing users to read arbitrary files. As the application runs with the highest priv…

EPSS: 0.011 (61.0th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References