Path Traversal in Altium Enterprise Server
CVE-2026-9102
A path traversal vulnerability exists in the Altium Enterprise Server ComparisonService due to missing filename sanitization in the Gerber file upload APIs. A regular authenticated workspace user can supply a crafted filename in the multip…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.006 (70.6th percentile) — read the EPSS interpretation.
Affected products
- Altium Enterprise Server — versions 0