PatchSiren cyber security CVE debrief
CVE-2026-11844 IEI Integration Corp CVE debrief
CVE-2026-11844 is a MEDIUM-severity vulnerability in the iVEC-IEI Virtualization Edge Computer developed by IEI Integration Corp. It allows privileged remote attackers to access files outside the intended directory scope, classified as CWE-22.
- Vendor
- IEI Integration Corp
- Product
- iVEC TANK-XM811
- CVSS
- MEDIUM 6.9
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-12
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-12
- Advisory updated
- 2026-06-12
Who should care
Users of iVEC-IEI Virtualization Edge Computer developed by IEI Integration Corp should apply patches or mitigations to prevent exploitation.
Technical summary
The iVEC-IEI Virtualization Edge Computer developed by IEI Integration Corp has an Arbitrary File Read vulnerability. This vulnerability allows privileged remote attackers to access files outside the intended directory scope. The vulnerability is classified under CWE-22 and has a CVSS score of 6.9.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates provided by IEI Integration Corp to fix the Arbitrary File Read vulnerability.
- Restrict access to the affected system to only trusted users and networks.
- Monitor system logs for suspicious activity.
Evidence notes
The CVE record was published on 2026-06-12T10:16:21.423Z and last modified on 2026-06-12T16:00:18.860Z. The vulnerability details were obtained from the NVD and CVE.org.
Official resources
CVE-2026-11844 was published on 2026-06-12T10:16:21.423Z.