PatchSiren cyber security CVE debrief
CVE-2026-32981 ray-project CVE debrief
A path traversal vulnerability was identified in Ray Dashboard (default port 8265) in Ray versions prior to 2.8.1. The vulnerability allows an attacker to access files outside the intended static directory using traversal sequences, resulting in local file disclosure. This issue has a CVSS score of 8.7 and is considered HIGH severity. The CVE was published on March 17, 2026, and last modified on June 30, 2026. Anyscale is the vendor, and the product is Ray. The vulnerability is tracked under CWE-22.
- Vendor
- ray-project
- Product
- Ray
- CVSS
- HIGH 8.7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-03-17
- Original CVE updated
- 2026-06-30
- Advisory published
- 2026-03-17
- Advisory updated
- 2026-06-30
Who should care
Organizations using Ray versions prior to 2.8.1 should be aware of this vulnerability and take necessary actions to mitigate the risk. Specifically, administrators and security teams responsible for Ray installations should review their configurations and update to version 2.8.1 or later. Additionally, users of Ray Dashboard should be cautious when accessing files and directories.
Technical summary
The path traversal vulnerability in Ray Dashboard occurs due to improper validation and sanitization of user-supplied paths in the static file handling mechanism. An attacker can exploit this vulnerability by using traversal sequences (e.g., ../) to access files outside the intended static directory, leading to local file disclosure. The vulnerability has a CVSS score of 8.7 and is considered HIGH severity. The affected product is Ray, and the vendor is Anyscale.
Defensive priority
High priority should be given to updating Ray to version 2.8.1 or later. In the meantime, defenders should monitor Ray Dashboard access and restrict access to sensitive files and directories.
Recommended defensive actions
- Update Ray to version 2.8.1 or later
- Monitor Ray Dashboard access and restrict access to sensitive files and directories
- Review and restrict access to Ray Dashboard (default port 8265)
- Implement additional security measures to detect and prevent local file disclosure attempts
- Conduct regular security audits and vulnerability assessments
Evidence notes
The CVE record and NVD detail provide official information about the vulnerability. Additional sources, including Vulncheck and Red Hat, offer advisories and mitigation guidance. The vulnerability is tracked under CWE-22.
Official resources
-
CVE-2026-32981 CVE record
CVE.org
-
CVE-2026-32981 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
[email protected] - Product
-
Mitigation or vendor reference
[email protected] - Exploit, Third Party Advisory
-
Mitigation or vendor reference
[email protected] - Third Party Advisory
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
This article is AI-assisted and based on the supplied source corpus.