CVE-2026-40503

Source
https://cve.org/CVERecord?id=CVE-2026-40503
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-40503.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-40503
Published
2026-04-16T00:08:09.535Z
Modified
2026-07-16T03:31:05.600766056Z
Severity
  • 7.1 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator
Summary
OpenHarness Path Traversal Information Disclosure via /memory show
Details

OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gateway users with chat access to read arbitrary files by supplying path traversal sequences to the /memory show slash command. Attackers can manipulate the path input parameter to escape the project memory directory and access sensitive files accessible to the OpenHarness process without filesystem containment validation.

Database specific
{
    "cwe_ids": [
        "CWE-22"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/40xxx/CVE-2026-40503.json",
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "fixed": "dd1d235450dd987b20bff01b7bfb02fe8620a0af"
                }
            ],
            "source": "AFFECTED_FIELD"
        }
    ],
    "cna_assigner": "VulnCheck"
}
References

Affected packages

Git / github.com/hkuds/openharness

Affected ranges

Type
GIT
Repo
https://github.com/hkuds/openharness
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "REFERENCES"
}

Affected versions

v0.*
v0.1.6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-40503.json"