PatchSiren cyber security CVE debrief
CVE-2026-53698 Silverpeas CVE debrief
CVE-2026-53698 is a MEDIUM severity vulnerability in Silverpeas through 6.4.6, with a CVSS score of 6.5. The vulnerability involves mishandling of the 'Personal space' feature when no componentId is set. This issue was published on [cvePublishedAt] and last modified on [cveModifiedAt].
- Vendor
- Silverpeas
- Product
- Unknown
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-10
- Original CVE updated
- 2026-06-10
- Advisory published
- 2026-06-10
- Advisory updated
- 2026-06-10
Who should care
Users of Silverpeas through 6.4.6 should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability has a CVSS vector of CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N and is classified under CWE-36. The affected product is Silverpeas, and the vendor is currently listed as Unknown Vendor.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply patches or updates provided by the vendor to fix the vulnerability.
- Restrict access to the 'Personal space' feature to prevent unauthorized access.
- Monitor the system for any suspicious activity related to the vulnerability.
Evidence notes
The evidence for this CVE includes references to the Silverpeas GitHub repository and issue tracker.
Official resources
CVE-2026-53698 was published on 2026-06-10T16:17:17.240Z and last modified on 2026-06-10T20:16:41.553Z.