PatchSiren cyber security CVE debrief
CVE-2026-7852 Limatek System Inc. CVE debrief
CVE-2026-7852 is a critical vulnerability in Limatek System Inc.'s LimRAD NAC, affecting versions before 5.5.7.3.9. The issue allows for remote code inclusion due to an unrestricted upload of files with dangerous types. This vulnerability has a CVSS score of 9.8 and is considered critical.
- Vendor
- Limatek System Inc.
- Product
- LimRAD NAC
- CVSS
- CRITICAL 9.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-11
Who should care
Administrators and users of LimRAD NAC versions before 5.5.7.3.9 should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability is caused by an unrestricted upload of files with dangerous types in LimRAD NAC. This allows attackers to remotely include code, potentially leading to arbitrary code execution.
Defensive priority
High
Recommended defensive actions
- Update LimRAD NAC to version 5.5.7.3.9 or later.
- Restrict file uploads to only allow specific, safe file types.
- Implement additional security measures, such as web application firewalls and intrusion detection systems.
Evidence notes
The CVE record and NVD detail can be found at [cve-org] and [nvd], respectively. Additional information is available at [ref-4].
Official resources
-
CVE-2026-7852 CVE record
CVE.org
-
CVE-2026-7852 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-7852 was published on 2026-06-11T13:16:37.460Z and modified on 2026-06-11T15:28:44.720Z.