CVE-2026-40515

Source
https://cve.org/CVERecord?id=CVE-2026-40515
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-40515.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-40515
Published
2026-04-17T16:00:07.116Z
Modified
2026-07-08T08:13:12.333644737Z
Severity
  • 8.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator
Summary
OpenHarness Permission Bypass via grep and glob root argument
Details

OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not properly evaluated against configured path rules, allowing disclosure of sensitive local file content, key material, configuration files, or directory contents despite configured path restrictions.

Database specific
{
    "cna_assigner": "VulnCheck",
    "cwe_ids": [
        "CWE-863"
    ],
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "fixed": "bd4df81f634f8c7cddcc3fdf7f561a13dcbf03ae"
                }
            ],
            "source": "AFFECTED_FIELD"
        }
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/40xxx/CVE-2026-40515.json"
}
References

Affected packages

Git / github.com/hkuds/openharness

Affected ranges

Type
GIT
Repo
https://github.com/hkuds/openharness
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "REFERENCES"
}

Affected versions

v0.*
v0.1.6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-40515.json"